Scribd Logo
Carica

Benvenuto in Scribd!

  • Daily Tasks

    Caricato da

    Naren Bhargava
    43 visualizzazioni4 pagine
    The document outlines a 6 day training program for a new analyst. Day 1 covered orientation, introductions, access setup, and an overview of daily tasks. Day 2 focused on systems access, request processes, training materials, expectations, and escalation procedures. Day 3 introduced the IBM Resilient platform, incident handling processes, and trackers. Day 4 covered Cisco StealthWatch, components, dashboards, and related tasks. Day 5 had the analyst work in shadow mode on incidents and introduced Infoblox. Day 6 included additional security systems, working in shadow mode, and completing documentation before signing off.

    Descrizione originale:

    Titolo originale

    Daily tasks

    Copyright

    © © All Rights Reserved

    Formati disponibili

    XLSX, PDF, TXT o leggi online da Scribd

    Hai trovato utile questo documento?

    Questo contenuto è inappropriato?

    Segnala questo documento
    The document outlines a 6 day training program for a new analyst. Day 1 covered orientation, introductions, access setup, and an overview of daily tasks. Day 2 focused on systems access, request processes, training materials, expectations, and escalation procedures. Day 3 introduced the IBM Resilient platform, incident handling processes, and trackers. Day 4 covered Cisco StealthWatch, components, dashboards, and related tasks. Day 5 had the analyst work in shadow mode on incidents and introduced Infoblox. Day 6 included additional security systems, working in shadow mode, and completing documentation before signing off.

    Copyright:

    © All Rights Reserved
    Scarica in formato XLSX, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    43 visualizzazioni4 pagine

    Daily Tasks

    Caricato da

    Naren Bhargava
    The document outlines a 6 day training program for a new analyst. Day 1 covered orientation, introductions, access setup, and an overview of daily tasks. Day 2 focused on systems access, request processes, training materials, expectations, and escalation procedures. Day 3 introduced the IBM Resilient platform, incident handling processes, and trackers. Day 4 covered Cisco StealthWatch, components, dashboards, and related tasks. Day 5 had the analyst work in shadow mode on incidents and introduced Infoblox. Day 6 included additional security systems, working in shadow mode, and completing documentation before signing off.

    Copyright:

    © All Rights Reserved
    Scarica in formato XLSX, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    di 4

    Day 1

    Orientation of office
    Introdution with Team
    Fill Access & ID card & send to respective teams
    Request for biometric
    Intr of Project & Job Role
    Intro of tools /devices used
    Create SSO id of analyst
    Brief about daily task

    Day 2
    Access of mail, Share folders & Central repository
    Request Raise for respective devices ID's creation
    Assing training Material
    Explaint expection
    Details Abount client network architecture
    Internal network & Ips range
    Details about Client mail & contact details
    Escalation matrix
    SR/Cr Portal details & process
    SLA details
    Brief about Shift handover, all trackers

    Day 3
    Describe IBM Resilient SOAR (Intro, Architecture, versions, Urls)
    Incident criteria
    Incident Handling process
    Brief about incident types & alert flow
    Scope of work/SOP & other related docs path & Need to learn them
    Devices integrated with resilient
    Incident tracker & other trackers related to incidents & their respective paths
    Show sample incidents & closing steps
    Escalation matrix of resilient
    Brief about shift handover
    Doubts

    Day 4
    Cisco StealthWatch NBAD (Intro, Architecture, versions, Urls)
    Details about NBAD components
    Ips & urls
    Dashboard & alert monitoring
    Traffic analysis
    Tasks related to NBAD (Data Transfer reports & Mail alerts )
    Trackers related to NBAD tasks & their respective paths
    SOP & other related documents path & need to read them
    Escalation Matrix
    Allow analyst to work in shadow mode with assigned buddy on incidents
    Doubts

    Day 5
    Allow analyst to work in shadow mode with assigned buddy on incidents
    Describe Infloblox (Intro, Architecture, versions, Urls)
    Details about components
    Dashboard & alrt monitoring
    DNS Entry & mgmt details & steps
    Sop & other related documents paths & need to read them
    Escalation Matrix
    Doubts

    Day 6
    Allow analyst to work in shadow mode with assigned buddy on incidents
    Describe other SOC devices (Fire Eye, WAF)
    FireEye alert monitoring & analysis
    WAF alert monitoring
    Symantec Forensics Intro
    Sign- off with L2
    Review All above tasks
    Doubts
    Fill SOC related sheets (Skill Matrix, Employee details sheet , Dos & Donts )
    Sign-off with Buddy
    Buddy Divin
    y y
    y y
    y y
    y y
    y y
    y y
    y y

    y y
    n n
    y n
    y y
    y n
    y y
    y y
    y y
    n n
    y y
    n n

    y y
    y y
    y y
    n n
    y y
    n n
    y y
    y y
    n n
    y y

    D d
    D d
    D
    D
    D
    D
    n n
    y y
    in progress
    in progress
    in progress
    in progress

    Potrebbero piacerti anche