µÇ¼ | Ê×Ò³ -> »ªÐÂÏÊÊ -> ´´ÒµÇóÖ° | Çл»µ½£º´«Í³°æ / sForum | Ê÷ÐÎÁбí
ÓÐûÓж®SOCµÄ£¬security operations center, ½øÀ´ÁÄÁÄ¡­
<<ʼҳ¡¡ [1]¡¡ Ä©Ò³>>¡¡

ÓÐûÓж®SOCµÄ£¬security operations center, ½øÀ´ÁÄÁÄ¡­Ö÷ÒªÊÇbank/financial company µÄSOC£¬×ö security monitoring, incident responseÕâЩ£¬24/7 standbyÊǶ㲻Á˵ģ¬¿ÉÄÜÇ®±È½Ï¶à£¬ÏëÎÊÎʶÔÒ»¸ö³õ¼¶¹ÜÀí²ã²¢ÇÒÓмÒÓÐÍÞµÄÅ®ÉúÊǸöºÃµÄÑ¡ÔñÂ𣿹¤×÷Ç¿¶ÈÔõÑù£¿×öÒ»¶Îʱ¼äºóÔÙÌø³öÈ¥»áÈÝÒ×Â𣿻¶Ó­´ó¼Ò³©ËùÓûÑÔ¡­¡­ ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [saltwater (1-25 7:56, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]1Â¥

Â¥Ö÷ÊÇsecurity analyst Â𣿻¹ÊǹÜÀísecurity analyst µÄÍ·Ä¿?
SAµÄ¹¤×÷ÊÇshift job , 12Сʱ£¬¹¤×÷Á½ÌìÐÝÏ¢Á½Ìì¡£¹¤×÷¾ÍÊÇ¿´logºÍ·ÖÎö¡£
нˮ3ǧ¶à°É£¬¿ÉÒÔÆ´OT£¬ OTÊÇÒ»ÕûÌìµÄ¡£[andylau1988 (1-25 12:14, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]2Â¥

Å®º¢ºÜ¶à¶¼×ö²»¾Ã£¬ÒòΪҪ°¾Ò¹£¬¹¤×÷Ç¿¶È²»´ó£¬±È½Ï³ÁÃÆ¡£×öÒ»¶Îʱ¼äºó¿´Äã×Ô¼º½øÐÞÈçºÎ£¿¿ÉÒÔ¿¼ÂÇSecurity consultant¡£
SOCµÄÈË´ó¸Å×öÁ½Äê¾Í²»¸ÉÁË£¬µ«ÊǸöÀíÏëµÄ̤½Åʯ¡£[andylau1988 (1-25 12:19, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]3Â¥

24 standby µÄºÜ²»Ë¬²»½¨Òé ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [sonatam (1-25 12:22, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]4Â¥

(ÒýÓà andylau1988:Å®º¢ºÜ¶à¶¼×ö²»¾Ã£¬ÒòΪҪ°¾Ò¹£¬¹¤×÷Ç¿¶È²»´ó£¬±È½Ï³ÁÃÆ¡£×öÒ»¶Îʱ¼äºó¿´Äã×Ô¼º½øÐÞÈçºÎ£¿¿ÉÒÔ¿¼ÂÇSecurity consultant¡£ SOCµÄÈË´ó¸Å×öÁ...)ÎÒ²»ÊÇsecurity analyst¡­Ò²Ã»ÓÐsocµÄ¾­Ñ飬µ«ÊDZ³¾°Ïà¹ØÔÙ¼ÓÉÏÓÐÖ¤£¬×î½ü½ÓÁ˼¸¸öÃæÊÔ¶¼ÊÇÕâÖÖ¡­¡­
֮ǰÊÇ×öPM£¬application·½ÃæµÄ£¬Ò²ÊÇIT SecurityµÄÒ»¸ö·ÖÖ§
ÃæµÄְλӦ¸ÃÊÇAVP level£¬²»ÐèÒª×öshift£¬µ«ÊÇÒªstandby£¬²»¹Ü¼¸µãÓÐÊÂÇé¿Ï¶¨ÊÇÒª»ØÈ¥×öµÄ£¬ÕâµãÎÒÒ²ÊǺܵ£ÐÄ£¬²»¹ý¹«Ë¾ÊÇGIC£¬Ãû×ÖÏìÁÁ£¬¹þ¹þ£¬ÓеãÐĶ¯
ºÜÓÌÔ¥ÊÇÑ¡ÔñÕâÑùµÄ¹¤×÷»¹ÊÇÔÙÕÒPMµÄ¹¤×÷¡­¡­ ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [saltwater (1-25 13:02, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]5Â¥

(ÒýÓà sonatam:24 standby µÄºÜ²»Ë¬²»½¨Òé)ÕâÒ²ÊÇÎÒ²»ÂúÒâµÄµã¡­¡­²»ÖªµÀÊÇÒ»Ö±standby£¬»¹ÊÇÓм¸¸öÈË¿ÉÒÔÂÖ×ÅÀ´ ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [saltwater (1-25 13:05, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]6Â¥

ÎÒÂô¹ýSIEMÌý¿Í»§½²¹¤×÷²»ºÃ×ö°¡
³£³£±³ºÚ¹ø
ÓÖű»²Ã
ÎÒ¾õµÃ×ösecurity analysis ±È½ÏºÃÒ»µã ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [С»¨16 (1-25 13:15, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]7Â¥

ºÃÆæÄãÊÇÉáôÕ÷ÄãÓ¦¸Ã²»ÊÇtechnical Ð͵İɣ¬ÓÐÊ·¢Éú½ÐÄã»ØÈ¥Ò²ÊÇÎÞ²¹ÓÚÊ¡£[andylau1988 (1-25 13:19, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]8Â¥

Òª¹ÜÕû°àSA,Ó¦¸Ã´¦ÀíÈËʹØϵ±È½Ï¶à°É¡£[andylau1988 (1-25 13:22, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]9Â¥

(ÒýÓà С»¨16:ÎÒÂô¹ýSIEMÌý¿Í»§½²¹¤×÷²»ºÃ×ö°¡ ³£³£±³ºÚ¹ø ÓÖű»²Ã ÎÒ¾õµÃ×ösecurity analysis ±È½ÏºÃÒ»µã)security analysis²»¾ÍÊÇ×öSIEMÕâЩô¡­¡­ÄѵÀÎÒÀí½â´íÁË£¿ ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [saltwater (1-25 13:32, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]10Â¥

(ÒýÓà andylau1988:ºÃÆæÄãÊÇÉáôÕ÷ÄãÓ¦¸Ã²»ÊÇtechnical Ð͵İɣ¬ÓÐÊ·¢Éú½ÐÄã»ØÈ¥Ò²ÊÇÎÞ²¹ÓÚÊ¡£)Ó¦¸ÃÓÐÖÁÉÙÒ»°ëµÄtechnical work¡­¹ÜÒ²ÊǹÜvendors¡­
technical·½Ãæ¶ÔÎÒÀ´½²Ó¦¸Ã²»Ä°Éú£¬pick upÒ²²»»áÌ«ÄÑ ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [saltwater (1-25 13:34, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]11Â¥

(ÒýÓà saltwater:Ó¦¸ÃÓÐÖÁÉÙÒ»°ëµÄtechnical work¡­¹ÜÒ²ÊǹÜvendors¡­ technical·½Ãæ¶ÔÎÒÀ´½²Ó¦¸Ã²»Ä°Éú£¬pick upÒ²²»»áÌ«ÄÑ)ºÜÉÙÅ®º¢»álinuxºÍscripting .[andylau1988 (1-25 13:37, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]12Â¥

(ÒýÓà saltwater:security analysis²»¾ÍÊÇ×öSIEMÕâЩô¡­¡­ÄѵÀÎÒÀí½â´íÁË£¿)·ÖÎöʦÂòSOCÒ»°ã¶¼ÓÐÂòÕâ¸öϵͳ
SOC operation is different from securiy analysis
Analysis would advise how such SIEM sustem to be configured and developed where SOC operaiton stuff will use the system
ÎÒÓöµ½µÄÇé¿ö´ó¸ÅÊÇÕâÑù ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [С»¨16 (1-25 13:38, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]13Â¥

(ÒýÓà andylau1988:ºÜÉÙÅ®º¢»álinuxºÍscripting .)ÎҵŤ×÷»·¾³ÀïÅ®È˺ÜÉÙ¡­£º£© ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [saltwater (1-25 13:59, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]14Â¥

(ÒýÓà С»¨16:·ÖÎöʦÂòSOCÒ»°ã¶¼ÓÐÂòÕâ¸öϵͳ SOC operation is different from securiy analysis Analysis would advise how such SIEM sustem to be ...)Ã÷°×ÁËdifference¾ÍÊÇproject or operation£¬security analysisÊÇ×öproject ¡¡[±¾ÎÄ·¢ËÍ×Ô»ªÐÂiOS APP] [saltwater (1-25 21:56, Long long ago)] [ ´«Í³°æ | sForum ][µÇ¼ºó»Ø¸´]15Â¥


<<ʼҳ¡¡ [1]¡¡ Ä©Ò³>>¡¡
µÇ¼ | Ê×Ò³ -> »ªÐÂÏÊÊ -> ´´ÒµÇóÖ° | [ˢб¾Ò³] | Çл»µ½£º´«Í³°æ / sForum