Empowering Security Researchers Around the World! | 09
Blueprint • 2020-08-04
Roberto Rodriguez explains the awesome projects and initiatives he is working on to help blue teams perform advanced data collection, analysis, and threat hunting.
Sponsor's Note:
Support for the Blueprint podcast comes from the SANS Institute.
Ever since the debut of the SANS SEC450: Blue Team Fundamentals course in 2019, author John Hubbard has had students ask if there is a management specific course that pairs with it. Well, the wait is finally over. If you like the topics covered in this podcast and would like to learn more about blue team leadership and management, check out the new 2-day course MGT551: Building and Leading Security Operations Centers!
This new management track course is designed for SOC leaders looking to build, grow, or improve their security operations capabilities through improved analysis technique, false positive reduction, better metrics, and continuous SOC assessment. Don't think that just because this is a management course that it won't be hands on though. Throughout the two days, there are 6 hands-on labs that show you, step-by-step, how to use tools for organization and implementation of analyst playbooks, SOC use cases, threat intelligence, purple team assessment planning and much more.
Check out this new offering at sansurl.com/551! Hope to see you in class!
Follow SANS Cyber Defense: Twitter | LinkedIn | YouTube
Follow John Hubbard: Twitter | LinkedIn
Featured Guest Bio:
Roberto Rodriquez is a Threat Researcher and Security engineer at the Microsoft Threat Intelligence Center (MSTIC) R&D team.
He is also the author of several open source projects, such as the Threat Hunter Playbook, Mordor and HELK, to aid the community development of techniques and tooling for threat research.
Blog at https://medium.com/@Cyb3rWard0g
Follow Roberto Rodriguez on Twitter (@Cyb3rWard0g).
