Crossposted using Lemmit.

Original post from /r/cybersecurity by /u/Makhann007 on 2023-07-06 23:04:39+00:00.


I’ve started as a Jr SOC analyst. Aside from being efficient at triaging tickets and having a firm understanding of the SIEM we are using what else can I do to excel at my role and go further?

My thoughts are along the lines of create whitelist or rules to ignore false positives or something along those lines.

Something that would give a measurable quantitative impact would be great so that I can use it as a key point for when I’m ready to apply to my next position.

Also, would it be useful for me to pass blue team level 1 cert?

TIA