Kaspersky has launched an online cybersecurity training program for experts called Security Operations and Threat Hunting, designed to help organizations improve or build a security operations center (SOC) from scratch.
The online courses, built around six months access to the course and 100 hours of hands-on labs, are also designed to enhance the skills of the SOC and security team in threat hunting, threat detection, and threat detection. incident and investigation.
The training focuses on modern attack tactics, techniques and procedures for Windows, Linux and networks and how to manage them, offering virtual hands-on labs and an on-demand format.
Kevin Gonzalez, security strategist at Anvilogic, pointed out that threats are constantly evolving and that security practitioners need to learn at the same pace as threat actors research ways to enter and exploit networks.
“Online training centers for IT security professionals give them on-demand access to the educational materials needed to get there, from content related to detection engineering and malware or just trying to keep up with emerging and evolving technologies,” he said.
He added that training centers are most effective when they offer material in a variety of formats that are easy to digest and actively engage the student.
“I’ve often found that covering fundamental concepts and principles with readable content and then following the practical application of those concepts through the use of e-books and tutorials works best,” he explained.
In effect, it allows the new learner to be immersed in situations where they learn to apply previously learned material.
John Steven, CTO at ThreatModeler, an automated threat modeling provider, pointed out that training and certifications alone are not enough to equip individuals to staff or operate a SOC.
“Training and certification introduces and evaluates procedures at a theoretical and often technology-neutral level,” he explains. “Practitioners need help applying this knowledge to the tools and technology stacks at play within their organization.”
He said the main benefit that training centers can offer is to give practitioners perspective and experience that allows them to hunt threats and respond to incidents in their technology environment using their organization’s tools.
“Effective online training finds a way to summarize experience and subject matter expertise into checklists, guidelines, and other job aids that the learner can take home and use over and over again. to ‘push his weight,'” Steven adds.
Darryl MacLeod, vCISO at LARES Consulting, an information security consultancy, said that with the ever-changing threat landscape, IT security professionals need to keep up to date with the latest trends and techniques.
“Online training centers can provide a convenient and affordable way to do this, especially with today’s workforce distributed across the globe,” he said.
These training centers for IT security professionals offer a variety of courses and resources that can help professionals keep up to date with the latest threats and trends, including webinars, articles, e-learning modules and certification programs.
“For businesses, investing in online security training can help ensure their employees are up to date with the latest threats and trends,” MacLeod said. “This can help reduce the risk of data breaches or other cyberattacks.”
For individual IT professionals, online security training can help them stay ahead of the game and keep their skills up to date without having to travel.
“Many online training centers also offer certification programs that can help IT professionals stand out,” he noted.
SOC: consistency is key
Steven said that when you’re running a SOC, consistency is key because automation and hands-on exercises are becoming easier to produce because infrastructure-as-code and cloud-based environments are so easy to go up and down.
“The posters you see in locker rooms with slogans like ‘Train the way you want to play’ resonate: train your SOC analysts the way you want them to respond to incidents,” he said. “When we’re stressed, we fall back on the last set of workouts and habits we have.”
He added that training that enables practitioners to explore real environments and respond to incidents or set up monitoring to improve response will win out.
MacLeod added that one emerging trend he’s seen is the use of gamification in security training.
“Games can be a fun and engaging way to learn about complex topics like cybersecurity,” he explains. “By incorporating game mechanics into safety training, learners can develop the skills they need to succeed in the industry.”
Gonzalez says training is key to helping build a SOC from the ground up because understanding core functions can help shape the organization’s strategy.
“From a defined strategy, efforts can be made to achieve this by developing processes and procedures and a training plan,” he said. “Organizational security professionals can undergo training to achieve organizational goals and improve processes and procedures.”
He noted that online training for security professionals will continue to become more immersive and easily accessible.
“With the increased growth of cybergams and simulation labs, more online training centers will offer these types of training and begin to partner with solution providers to create immersive educational experiences for their products,” Gonzalez said. .