SOC Analyst (Response) Levels
- Triage (operator)
- First response (cop)
- Investigation (detective)
CTI (Cyber Threat Intelligence)
Vulnerability Management Cycle
→ Scan → Prioritise → Assess → Report → Fix → Verify →
CTI Lifecycle
Frameworks
- Cyber Kill Chain
- Diamond Model
- MITRE ATT&CK
Departmental Use
Types
Vulnerability Management