The State of the SOC The Digital Divide - CompTIA Certifications

Global security operations center (SOC) professionals, chief information security officers (CISOs), chief information officers (CIOs), cybersecurity analysts and other IT management roles are constantly battling the growing cyberthreat landscape. At the top of the security chain of command are the CISOs, who are consistently keeping data safe, secure and accessible at all times. 

Despite this high-pressure responsibility, they also have to deal with business challenges, governance, risk and compliance. Together, they are the critical frontline outpost of cyber-defense.

SOCs become critical to helping a CISO ensure all potential security incidents and risks are identified, examined, defended against and reported. With thousands of new adversaries and security vulnerabilities appearing each day, being a security professional can be extremely challenging. As a result, security professionals can face extreme stress and fatigue. Organizations also struggle to update technology, retain employees and hire new talent.

In addition, CISOs and other members of the C-suite may be out of touch with the everyday challenges their SOC teams are facing. Oftentimes, this causes a false sense of confidence when it comes to how well a SOC can respond in the face of a cybersecurity crisis.

According to the Exabeam 2018 State of the SOC report, more than 62 percent of U.S. and UK security professionals said they would change how their SOC was run. The report dove into the mindset of those in the trenches, as well as those leading them.

6 Ways to Bridge the Divide Between Security and IT Operations

Bridging the digital divide between SOC and IT operations is critical to providing adequate protection from security threats. The following infographic shares the different struggles CISO and SOC professionals face with six things SOC leaders can do right away to amend them, and provides key insights on how organizations can maintain a well-run SOC.

Two Perspectives: The C-Suite vs. the Analyst

For managers, the biggest priorities are on technology, preventative measures and process improvements. Because of this, they are often unaware of security analyst burnout and the struggles they face. When larger issues come about, differing views can become even more pronounced.

Analysts and the C-suite may disagree on the following:

• Staffing issues, such as the amount of experience of particular staff members
• Aging security technology
• General operations and management of day-to-day tasks
• Time spent on documentation and reporting instead of defending the organization

Bridging the Divide

As highlighted by the above infographic, there are several ways to solve the miscommunication between the SOC and C-suite members. Below are some tips for SOC leaders that can be incorporated right away.

Begin by having open conversations with the analysts.

Consider implementing a monthly meeting with the SOC to sync on current issues and concerns.

Ask them questions such as the following:

• “What issues are you facing right now that interfere with your performance?”
• “What would make it easier for you to do your job?
• “How are your recommendations for lessons learned tracked and actioned?”
• “What cooperation do you lack?”

Have consistent communication with team members.

In order to have a productive, healthy working environment, employees of all levels need to be on the same page. C-suite members need to make sure teams are working together during a major crisis. Each team member has their own role, and it is important they know why they are important to the team. Don’t make introductions during a crisis.

Look at where areas of concern are and use it to prioritize your budget.

Use previous responses to cyber-incidents. What inhibited your team from reacting as best as they could? When seeking technical answers, ask what do you want to know and what is presently unknown? Talking to your team members about this can help identify present and future problems from occurring.

Build a relevant incident response (IR) plan.

First, automate the manual analytical steps. Next, create a step that represents reality – a simplified plan can help establish unity among your staff. A well-thought plan is one with inputs from the entire team and is in the form of a living document. Do not create an IR plan for audit purposes only.

Incorporate machine learning technologies.

Incorporating artificial intelligence (AI) and machine learning can help eliminate burnout and take away some of the tedious tasks security analysts are responsible for. Well-implemented machine learning allows your organization to “buy” response time and answer the “is this normal?” questions that arise during each incident. 

Set up the right environment.

Hire for emotional intelligence rather than what is simply on a technical resume, and ensure the talent you are recruiting has a personality that would fit in well with your existing team. Onboarding should include job shadowing to build a foundation without individual and group assignments. Work products must include a presentation to the larger team. During the entry period, have senior staff regularly share their experiences to help new hires find mentors and build relationships within the team.

Our experts say about CompTIA Certification Exams

What Is a Cloud Engineer - What I Do and How I Got Here

What ​is a cloud engineer?

As a cloud engineer, I maintain a customer cloud infrastructure. I ensure that the data processing solutions are functional and that accesses and data are correctly processed. I also ensure we are following best practices, keeping costs down and keeping our solutions secure.

In the Amazon cloud environment, I maintain the EC2 instances (virtual machines), monitor incoming transaction queues, maintain s3 (storage) and create identity access management (IAM) roles and policies.

A typical day includes making the environment safer, finding ways to automate processes, finding optimizations for cost and performance, and responding to customer inquiries.

How did you become a cloud engineer?

I have bachelor’s degree, and I worked a little bit of everything in IT before moving to the cloud: from desktop support to Windows admin, Linux admin and VMWare admin to data center and cybersecurity.

I also have a lot of IT certifications:

• CompTIA A+
• CompTIA Network+
• CompTIA Security+
• CompTIA Linux+/LPIC-1
• CompTIA PenTest+
• Certified Ethical Hacker
• Systems Security Certified Practitioner (SSCP)
• Certified Information Systems Security Professional (CISSP)
• GIAC Penetration Tester (GPEN)
• GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
• Amazon Solutions Architect Associate.

The certifications have helped open doors to me in different areas of technology, by meeting a requirement on a job application or by proving I have some baseline experience within certain fields. They also help me identify what I need to know, especially in emerging fields like cloud computing.

To gain hands-on skills, I like to tinker with new, interesting things, so I used a free trial account to get familiar with the cloud. Usually it helps to just jump in and try things out, learn from the mistakes.

What are some of the differences between working on-premises vs. cloud?

Making the transition from working an on-premises data center to the cloud was really fascinating for me. Working in the cloud environment is different from a regular data center because you can manage most of what you need to do from the console.

If I need to change dynamic host configuration protocol (DHCP) settings or modify subnets or access control lists (ACLs), it can all be done within the web interface or through the command line. In my previous positions, I’d have to pull up the management console for the specific services. I never did much with ACLs on network devices or routing before, but within a cloud environment, you get to learn all the facets in one spot. 

Another large difference between on-premises data centers versus the cloud is that the cloud emphasizes infrastructure as code. Within the Amazon cloud, you can deploy cloud formation templates and essentially deploy your environment with YAML files. This makes it super easy to re-deploy things like a test environment, which usually skews from production, and can keep the configurations very close.

How do your past experiences play into the role you have now?

The cloud is a nice big mix of everything. I use networking, server administration, scripting and vulnerability and pen testing skills to help architect and support our system layouts. Almost everything I’ve learned or done at previous jobs help me manage our cloud environment in some way because the foundations have a lot of similarities.

What’s next on your learning agenda?

Currently, I’m getting ready to test for my GIAC Reverse Engineering Malware (GREM) certification and continuing studies on my master’s in computer science.

What advice would you have for someone who wants to work in cloud computing?

I would say not to be intimidated. A lot of the concepts are the same, just with a different interface. Seasoned on-premises engineers and administrators will not find it too difficult to pick up. Also, most cloud providers offer a free trial account so that you can use that to help study for certifications or get a handle on what it’s like.

Success Secrets: How you can Pass CompTIA Certification Exams in first attempt 

3 Tech Towns for IT Pros Who Love Food - CompTIA Certifications

With more than 600,000 restaurants in the United States, consumers love going out to eat. Whether it’s trying out the new trendy spot or revisiting your favorite place for the millionth time, restaurants bring people together – and living in an area with awesome cuisine is extremely desirable.

U.S. News and World Report identified the best foodie destinations in the United States, and fortunately there is an overlap with some of the cities identified in the CompTIA Tech Towns Index! If these three cities get your mouth watering, maybe it’s time to make your move.

1. San Francisco, California

San Francisco is full of winding roads, hills with beautiful views of the skyline and the Bay, attractions like Alcatraz Island and Fisherman’s Wharf, and of course, a variety of delicious cuisines. From cozy cafes to upscale establishments, the restaurant scene in San Francisco is both charming and exciting. The Golden City ranks at spot number 5 on the CompTIA Tech Towns Index and reigns supreme at number 1 on the best foodie destinations list.

Top Cuisines in San Francisco

Yelp ranks San Francisco’s top cuisines as Asian (639 restaurants), burgers (384 restaurants) and Italian (300 restaurants).

Hot Spots for Foodies

A collage of San Francisco photos, including Fisherman's Wharf, Ghiradelli Square and the Buena Vista

San Francisco has a few iconic spots that are musts! Squeezed between the Pacific Ocean and the San Francisco Bay, San Francisco has fresh seafood all around.

On a gray day, get the cioppino – San Francisco’s famous seafood stew – at Tadich Grill to warm you up from the inside. Or if it’s nice, take a stroll along Fisherman's Wharf and eat fresh seafood at any number of restaurants on the water.

After dinner, get an ice cream sundae at Ghiradelli Square, and end with a nightcap at the Buena Vista, known for its Irish Coffee. Operating since 1916, it sometimes serves up to 2,000 Irish Coffees a day!

Why It’s a Good Place for IT Work

San Francisco is expecting 15 percent IT job growth over the next five years. Workers get paid $14.52 more per hour, which is needed since cost of living is 64.2 percent higher than the national average. The median salary for an IT pro is $110,448, the highest of the three foodie cities in this article.

2. Seattle, Washington

The laid-back city of Seattle has so much to offer to people with many varying interests. If you like the outdoors, you can enjoy kayaking, hiking and camping. If you appreciate the arts, check out the Chihuly Garden and Glass and the Seattle Art Museum. And, of course, if you consider yourself a foodie, then you’re in luck – Seattle places number 7 on our Tech Towns Index and number 8 on the best foodie destinations list. It may rain close to 150 days a year in Seattle, but its food scene is far from gloomy.

Top Cuisines in Seattle

Similar to its fellow waterfront Tech Town San Francisco, seafood is king in Seattle, with more than 205 seafood restaurants in the city. Also common are cafes and bakeries, where you can stop in for a quick coffee and pastry. Seattle is also home to many unique breweries for the beer lovers!

Hot Spots for Foodies

A collage of Seattle photos, including Starbucks and Pike Place Market

If you’re going to go to one place in Seattle, make it Pike Place Market. You won’t want to miss out on the food entertainment at the world-famous Pike Place Fish Market, where fishmongers launch large fish over the counter to customers after they purchase them. And while you’re here, grab some of the freshest seafood in the Pacific Northwest.

Seattle is also home to a little coffee shop you may have heard of – Starbucks! The original Starbucks was established in 1971 at Pike Place Market and is now one of the biggest coffee franchises in the world.

Why It’s a Good Place for IT Work

Seattle is expecting 11 percent IT job growth over the next five years. Workers get paid $14.18 more per hour than the national average, and the cost of living is 19.9 percent higher. You may have noticed the cost of living is 44 percent lower than in San Francisco, but the median salary for an IT pro is almost identical at $109,741, giving you more bang for your buck.

3. Austin, Texas

Austin, Texas, is known as the live music capital of the world, but it is also number 3 on our Tech Towns Index and number 13 on the best foodie destinations list. Austin has a reputation for being a little quirky, which is why its slogan is “Keep Austin Weird.” And because Austin has close to 230 sunny days per year, a lot of the food life is enjoyed outdoors.

Top Cuisines in Austin

With its close proximity to Mexico, Austin has more than 900 Mexican restaurants, according to Yelp. But burger and BBQ joints are also in ample supply, with about 100 of each. And while there are many classics in Austin, you can expect some avant-garde flair as well.

Hot Spots for Foodies

A collage of Austin photos, including Sixth Street and Rainey Street

One must-see area in Austin is Sixth Street. Sixth Street is one of the city’s most iconic streets and is known as the center of what made Austin famous for live music. Sixth Street cuisine ranges from cheap dive bars to upscale restaurants with famous chefs, so everyone is bound to find something they like!

Another awesome spot is Rainey Street – known for its many food trucks. Food trucks are creative enough when solo, but put 10 or more together, and you’ve got a foodie’s paradise!

You can’t visit Austin without heading to South Congress. Grab tacos at Torchy’s and then catch a band at the Continental Club – an intimate venue that opened in 1955 and has featured headliners ranging from Stevie Ray Vaughn to Social Distortion.

Why It’s a Good Place for IT Work

Austin is expecting 15 percent IT job growth over the next five years. The cost of living is 3.4 percent lower than the national average, and workers get paid $0.98 more per hour. The median salary for an IT pro in Austin is $82,285!

The Whole Enchilada

If you are an IT pro looking to relocate and having a stellar food scene is important to you, consider one of these three foodie cities. On top of delicious eats, these cities also offer a lot of fun activities for all interests, and most importantly, are great locations for the IT pro to have a successful career.

You Can Easily Get CompTIA Certification Exam Dumps Guide Here