Sponsor's Note:
Support for the Blueprint podcast comes from the SANS Institute.
If you like the topics covered in this podcast and would like to
learn more about blue team fundamentals such as host and network data
collection, threat detection, alert triage, incident management, threat
intelligence, and more, check out my new course SEC450: Blue Team
Fundamentals.
This course is designed to bring attendees the information that
every SOC analyst and blue team member needs to know to hit the ground
running, including 15 labs that get you hands on with tools for threat
intel, SIEM, incident management, automation and much more, this course
has everything you need to launch your blue team career.
Check out the details at sansurl.com/450! Hope to see you in class!
Follow SANS Cyber Defense: Twitter | LinkedIn | YouTube
Follow John Hubbard: Twitter | LinkedIn
Featured Guest Bio:
Josh Johnson is a SANS Certified Instructor and course author of
SEC586: Blue Team Operations: Defensive PowerShell. He has been working
in the Information Security industry for over 10 years in varying roles
with responsibilities ranging from penetration testing to incident
response. Josh was Purple Teaming since before it had a name and used
his offensive security skill set to find and pursue his true passion -
Blue Team. Since then, he has been helping organizations of all sizes,
and in varying industries from healthcare to retail to finance, improve
their cyber defense capabilities.
More About Josh
Follow Josh on Twitter (@jcjohnson34) and LinkedIn (/in/jcjohnson34).