SOC Analysts

Starting a Cybersecurity career in 2026 ? Stop collecting more certifications. Start building things people can see. → A home lab using any SIEM → A Terraform module that enforces security baselines → A Python script that automates compliance checks → A blog post explaining a complex security concept → A threat model for a popular open-source project → A SIEM detection rule that actually catches threats Your GitHub matters more than your CV. Your projects matter more than your profile. Proof of work > proof of study. Build in public. The opportunities will find you. Good luck in your career! #CyberSecurity #InfoSec #Hacking #SOCAnalysts

🚨 FREE Cybersecurity Training + Certification Exam - Ending Soon If you’ve been looking for the perfect opportunity to break into Cybersecurity… this is it. ISC2 is officially closing new enrollments for its FREE Certified in Cybersecurity (CC) program on May 20, 2026. This program has already helped more than 1 MILLION people worldwide start their cybersecurity journey. And yes… You can still get: ✅ FREE self-paced cybersecurity training ✅ FREE Certified in Cybersecurity (CC) exam voucher ✅ A globally recognised entry-level cybersecurity certification Why this matters: For many aspiring professionals, getting that first certification is the hardest step. The ISC2 CC certification helps you build foundational knowledge in: • Security principles • Network security • Risk management • Incident response • Access control concepts No prior cybersecurity experience required. 🚀 How to get started: 1️⃣ Create an ISC2 account - lnkd.in/eqYHwNJh 2️⃣ Complete the ISC2 Candidate application 3️⃣ Select “Certified in Cybersecurity (CC)” 4️⃣ Access your FREE training + exam voucher from your ISC2 Dashboard ⚠️ Important: New enrollments close May 20, 2026. If you have already received an exam code, you can still schedule and sit for the exam until December 31, 2026. 💭 Final thought: Everyone talks about getting into cybersecurity. Very few take the first step. This could be yours. #CyberSecurity #ISC2 #CertifiedInCybersecurity #CC #CareerSwitch #TechCareers #InformationSecurity

🚨 𝗙𝗿𝗲𝗲 𝗥𝗲𝘀𝗼𝘂𝗿𝗰𝗲𝘀: 𝗣𝗲𝗻𝗲𝘁𝗿𝗮𝘁𝗶𝗼𝗻 𝗧𝗲𝘀𝘁𝗶𝗻𝗴 🚨 If you want to kickstart your career in Ethical Hacking or Pentesting, then this resource will help you to excel in your security career. ⭐️ 𝐏𝐞𝐧𝐭𝐞𝐬𝐭𝐢𝐧𝐠 𝐁𝐚𝐬𝐢𝐜𝐬 → Web Application Penetration Testing: Steps, Methods & Tools by PurpleSec 🔗 lnkd.in/gRYTR9-9 → 24 Top Open Source Penetration Testing Tools by eSecurity Planet 🔗 lnkd.in/gDEQ_g98 ⭐️ 𝐆𝐞𝐭𝐭𝐢𝐧𝐠 𝐒𝐭𝐚𝐫𝐭𝐞𝐝 𝐰𝐢𝐭𝐡 𝐏𝐞𝐧𝐭𝐞𝐬𝐭𝐢𝐧𝐠 𝗧𝗲𝘀𝘁𝗶𝗻𝗴 → Getting started with Burp-Suite by PortSwigger 🔗 lnkd.in/geGUgt5R → [Free Course] Web App Penetration Testing by freeCodeCamp 🔗 lnkd.in/gSZ8Jdpu → [Free Course] Free Penetration Testing course by Alison 🔗 lnkd.in/gpbnXmVH → [Free Course] Web Application Penetration Testing by Cybrary 🔗 lnkd.in/g8RSjVpb ⭐️ 𝐂𝐨𝐦𝐦𝐮𝐧𝐢𝐭𝐲 𝐂𝐫𝐞𝐚𝐭𝐨𝐫 𝐏𝐢𝐜𝐤 🌟 ➔ Simple Penetration Testing Tutorial for Beginners by LOI LiangYang 🔗 lnkd.in/ghbx-baK → Complete Offensive Security Roadmap by Ansh Bhawnani 🔗 lnkd.in/dQE9m8GX ♻️ 𝐒𝐇𝐀𝐑𝐄 - Are you familiar with any other relevant resources? Feel free to share them in the comments. #SOC_Analysts #ThreatHunting #IncidentResponse #SecurityAnalysts #BlueTeam #DigitalForensics #CyberSecurity #NetworkSecurity #MalwareAnalysis #SOC

🔌 **Common Network Ports Cheat Sheet** TCP/UDP | Port | Protocol ---|---|--- TCP | 20/21 | FTP TCP | 22 | SSH TCP | 23 | Telnet TCP | 25 | SMTP TCP/UDP | 53 | DNS UDP | 67/68 | DHCP UDP | 69 | TFTP TCP | 80 | HTTP TCP | 110 | POP3 UDP | 123 | NTP TCP | 143 | IMAP TCP/UDP | 161/162 | SNMP TCP | 443 | HTTPS TCP | 445 | SMB TCP | 993 | IMAPS TCP | 995 | POP3S TCP | 5900 | VNC Save this. You'll thank yourself later. 💾 #Networking #Cybersecurity #SysAdmin

@Derick__Edge In short, yes. If you work at an MSP where you deal with multiple clients, your day can be quite hectic.

@soc_analysts Do most SOC teams deal with this same problem on a daily basis??

> ☕🔥 LIFE OF A SOC ANALYST: WELCOME TO FALSE POSITIVE HELL! > > 50 alerts before coffee. > 1 “critical” Excel file. > Endless chaos. > > Behind every secure business… there’s a SOC analyst surviving false positives 💀💻 > > #CyberSecurity #SOCAnalyst #BlueTeam #SIEM #FalsePositive #SecurityOps #BlueTeamLife

Microsoft Learn has just shared the new version of the the Azure Solutions Architect Expert (AZ-305) Youtube videos with Amit Nir. 👉 Watch the full playlist here : lnkd.in/gQRPUwBT If you’re preparing for the AZ-305 exam, I’ve compiled learning material to help you get ready. 👇 1️⃣ Microsoft Learn Learning Path lnkd.in/eHFkvKyz 2️⃣ Study Cram on YouTube with John Savill lnkd.in/e4EUyW7c 3️⃣ Study Guide lnkd.in/egcpfvwt 4️⃣ Exam prep videos lnkd.in/eRCF5Rqd 5️⃣ Practice Test Questions lnkd.in/eVV__pws Enjoy and do not forget to share🙂 #MicrosoftLearn

🔐 Least Privilege Access - the golden rule of cybersecurity. Give users & services ONLY the permissions they need - nothing more. ✅ Reduces attack surface ✅ Limits blast radius of a breach ✅ Prevents privilege escalation If an account doesn't need it, revoke it. Simple as that. #CyberSecurity #ZeroTrust #LeastPrivilege #CloudSecurity #ActiveDirectory

SOC analysts don’t just watch alerts, they fight chaos with precision ⚔️ Every log tells a story, every alert hides a clue, and every response protects the enterprise. Heroes behind the screens, defenders of the network. CyberSecurity #SOCAnalyst #BlueTeam

📖 SC-300: lnkd.in/eYzhbdXW 📖 AZ-700: lnkd.in/eafu9FV5 📖 SC-200: lnkd.in/eit4SZWa 📖 AZ-140: lnkd.in/erWqKmeV 📖 SC-100: lnkd.in/ecQRBf3u 📖 AZ-900 (Labs): lnkd.in/eGbUaU2Y 📖 AZ-900 (Theory): lnkd.in/gKtAqQYC 📖 MS-900 (Exam no longer existing but still relevant topics): lnkd.in/gPc5by4Q #Microsoft #azure #certifications #careerdevelopment #learning

✨ 𝗡𝗜𝗦𝗧 𝗢𝗻𝗹𝗶𝗻𝗲 𝗜𝗻𝘁𝗿𝗼𝗱𝘂𝗰𝘁𝗼𝗿𝘆 𝗖𝗼𝘂𝗿𝘀𝗲𝘀 𝟮𝟬𝟮𝟲✨ NIST has released three self-guided online introductory courses on the NIST Special Publication (SP) 800-53 security and privacy control catalogue, the SP 800-53A control assessment procedures, and the SP 800-53B control baselines. The courses provide a high-level overview of foundational security and privacy risk management concepts, based directly on their respective NIST SPs. ⏩ NIST SP 800-37 - Risk Management Framework (RMF) Introductory Course: lnkd.in/eG5MzSuG ⏩NIST SP 800-53, Security and Privacy Controls for Information Systems and Organisations: lnkd.in/eNAWZDap ⏩NIST SP 800-53A, Assessing Security and Privacy Controls in Information Systems and Organizations: lnkd.in/eakkQRgf ⏩NIST SP 800-53B, Control Baselines for Information Systems and Organisations: lnkd.in/eUB3-GR9 Source: lnkd.in/eA2W6Ary #cybersecurity #NIST #RMF #CSF

The Microsoft Sentinel Training Lab is now available. Hands-On Security Operations in Minutes! The Sentinel Training Lab is an open-source, deploy-in-minutes training environment that gives you a fully functional Microsoft Sentinel workspace loaded with realistic attack telemetry. One-click deploys pre-recorded data from six security products, custom detection rules that trigger real incidents, workbooks, watchlists, and playbooks. The lab simulates a multi-stage attack spanning six data sources, just as a real SOC analyst would encounter. * CrowdStrike — endpoint detections (malware execution, credential dumping) * Palo Alto Networks — firewall logs (port scans, data exfiltration, C2 traffic) * Okta — identity events (account takeover, MFA manipulation) * AWS CloudTrail — cloud activity (IAM escalation, backdoor accounts) * GCP Audit Logs — cloud infrastructure abuse (service account creation, firewall changes) * MailGuard365 — email security (phishing campaigns bypassing filters) Learn more: techcommunity.microsoft.com/blog/microsoft… #CyberSecurity #SOCAnalysts #Hacking #Security #CyberAttack

🚨 SHARE THIS WITH ANYONE WHO NEEDS A STARTING POINT 🚨 Cloud security has never had more free, high‑quality resources than it does right now, yet most people still don’t know where to begin 🤯 When I first started, I ran into the same problem: Endless “must‑read” blogs, huge YouTube playlists, and tool lists that felt impossible to navigate. So I’m sharing the exact resources that helped me build real, practical skills without wasting time. If you’re trying to break into cloud security or level up your capabilities, this list will give you a clear starting point ⚡ --- 🌩️ Hands‑On Labs, Guides & Learning Paths 🌀 AWS Cloud Quest: lnkd.in/dTkeaq5y 🌀 AWSGoat Labs: lnkd.in/dtfD-fGZ 🌀 AWS SkillBuilder Security Learning Plans: lnkd.in/dWAA6rPU 🌀 AWS Security Workshops: lnkd.in/d4Kic6FD 🌀 Awesome CloudSecurity Labs: lnkd.in/d3Rhkwu8 🌀 AWS Security Ramp‑Up Guide: lnkd.in/dHUvDAKf 🌀 Blue Team Labs — Cybr (Christophe Limpalair): lnkd.in/dKMp83bZ 🌀 Blue Team Labs — Pwned Labs: pwnedlabs.io --- 🎓 Certifications Worth Targeting 🌀 AWS Certified Security – Specialty: lnkd.in/dEngBrgK 🌀 Azure Security Engineer Associate: lnkd.in/dSZ5bAeW --- If this helps someone take their first step into cloud security, it’s worth sharing 💙 #socanalysts

🔴 Free Cybersecurity Related Training Courses from The Linux Foundation with Digital Credentials (Certificates) Cybersecurity Essentials (LFC108), (1 hr.) lnkd.in/eRGeyAmN The certificate is valid for 366 days from the date of course completion. Developing Secure Software (LFD121) (20 hrs.) lnkd.in/e8aDcKci Security for Software Development Managers (LFD125) (2 hrs.) lnkd.in/eUB9GMnP Understanding the EU Cyber Resilience Act (CRA) (LFEL1001) (1.5 hrs.) lnkd.in/eG-Vd3pE Authentication & Authorization for Web/API (LFEL1004) (1.5 hrs.) lnkd.in/ew_AgE4N Security Self-Assessments for Open Source Projects (LFEL1005) (1.5 hrs.) lnkd.in/erHNbz5a Securing Projects with OpenSSF Scorecard (LFEL1006) (1.5 hrs.) lnkd.in/eMF5xN-i Automating Supply Chain Security: SBOMs and Signatures (LFEL1007) (1.5 hrs.) lnkd.in/eQ7s6BAQ XSS Exploits and Defenses (LFEL1010) (1.5 hrs.) lnkd.in/e_biWi2w Secure AI/ML-Driven Software Development (LFEL1012) (1.5 hrs.) lnkd.in/eYdNsnuD Introduction to DevSecOps for Managers (LFS180) (20 hrs.) lnkd.in/eGn_9F6m Securing Your Software Supply Chain with Sigstore (LFS182) (8 hrs.) lnkd.in/e-9mweQU Introduction to Zero Trust (LFS183) (3 hrs.) lnkd.in/enbpWaTc Introduction to JavaScript Security (LFS184) (10 hrs.) lnkd.in/eQUM32kt Understanding the OWASP® Top 10 Security Threats (SKF100) (12 hrs.) lnkd.in/et2VuVfg Certificates of Completion for the courses listed above will be available on your dashboard at The Linux Foundation Training Portal: lnkd.in/eBcAvPBh Requirements, Design, and Reuse (LFD104x) (5 hrs.) lnkd.in/ek43_4tP Implementation (LFD105x) (7 hrs.) lnkd.in/ed5hRBk2 Verification and More Specialized Topics (LFD106x) (6 hrs.) lnkd.in/ehN8Y58N

💢 𝐅𝐫𝐞𝐞 𝐑𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞 & 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐓𝐫𝐚𝐢𝐧𝐢𝐧𝐠 –𝟐𝟎𝟐𝟔 Ransomware remains one of the fastest-growing cyber threats. If you work in Cybersecurity, IT, SOC, Risk, Compliance, Blue Team, Incident Response, or manage sensitive data, these resources are practical, expert-backed, and available now. What You Can Learn for Free 🟢 How ransomware works and how attackers operate 🟢 Threat lifecycle, detection, and defence strategies 🟢 Practical incident response fundamentals 🟢 Best practices for ransomware prevention and recovery 🟢 Risk management frameworks and operational resilience 💫 𝐅𝐫𝐞𝐞 𝐓𝐫𝐚𝐢𝐧𝐢𝐧𝐠 & 𝐑𝐞𝐬𝐨𝐮𝐫𝐜𝐞𝐬 1. Certified Ransomware Protection Officer (CRPO) – lnkd.in/gEKQCkjm 2. Ransomware Detection in Late Phases (Free Course) –lnkd.in/gdV5tcJW 3. Ransomware Basics Path – Microsoft Learning lnkd.in/g8UxPCME 4. CISA Incident Response & Ransomware-Related Training lnkd.in/g8AkQNPW 5. Palo Alto Networks Free #Cybersecurity Education Courses lnkd.in/gEKjNead

🚨 SHARE SOMEONE NEEDS IT 🚨 ⭕Every #SOC Analyst needs to see this. Stop reading, start doing. Here are 7 hands-on GitHub projects to build practical cybersecurity skills today. • #Splunk: lnkd.in/d2YR_wYA • Windows Forensics: lnkd.in/ds6RT2Yf • Log Analysis: lnkd.in/dhAZvesz • Active Directory: lnkd.in/d5uPB29b • #Security Assessments: lnkd.in/dCdn9G8P • Vulnerability Management: lnkd.in/diYtukyY • #Malware Analysis: lnkd.in/dfq-u4HS

🚨 SHARE SOMEONE NEEDS IT 🚨 𝗙𝗿𝗲𝗲 𝗦𝗜𝗘𝗠 𝗧𝗿𝗮𝗶𝗻𝗶𝗻𝗴𝘀 – 2️⃣0️⃣2️⃣6️⃣ 𝗘𝗗𝗜𝗧𝗜𝗢𝗡 SIEM (#Security Information and Event Management) remains the backbone of every modern Security Operations Centre (SOC). It empowers analysts to monitor, detect, and respond to threats by aggregating and correlating logs from diverse sources - #cloud, endpoints, and #networks. By using correlation and analytics, SIEM enables #SOC analysts to prioritise high-risk incidents and focus on what truly matters. To help you get started or deepen your SIEM expertise, I’ve curated a list of high-quality, free learning resources across major SIEM platforms 👇 ✅ General SIEM & Logging 📎 Windows Logging Basics – lnkd.in/grKYFQzJ 📎 Jose Bravo – What is a SIEM? (5 Videos) – lnkd.in/gc2UDpeD 📎 PowerSIEM – Analyzing Sysmon Events with PowerShell – lnkd.in/g_8Eq8vm ✅ IBM QRadar 📎 Jose Bravo – QRadar (38 Videos) – lnkd.in/gd7V_4pe 📎 QRadar 101 – lnkd.in/esbz2RjK 📎 QRadar SIEM Foundation – lnkd.in/es8NAdAw 📎 Ariel Query Language Guide – lnkd.in/eAMKy25q ✅ Splunk 📎 Course Catalog – lnkd.in/ekm6RekE 📎 Basic Searching – lnkd.in/gygnTMfD 📎 Practical Splunk: Zero to Hero – lnkd.in/ePF_3PWj 📎 Splunk Use Cases – lnkd.in/eJ4CTNV2 📎 Exploring Splunk – lnkd.in/e8gVvMuu ✅ Microsoft Sentinel 📎 What is Microsoft Sentinel – lnkd.in/gdB7dAdU 📎 Microsoft Sentinel Level 400 Training – lnkd.in/ezDkpWmx 📎 SOC 101 – lnkd.in/evnF6kNm ✅ SureLog 📎 Training (English) – lnkd.in/eAnAYDWJ 📎 Training (Turkish) – lnkd.in/e9VgJFHa 📎 Training PDF – lnkd.in/eXYFmqqV 📎 User Guide PDF – lnkd.in/e4HqkexW ✅ ArcSight 📎 Paul Brettle – What Is Series – lnkd.in/gh5ruPZt 📎 ArcSight ESM 101 – lnkd.in/gS33AJdk 📎 ArcSight Tutorial – lnkd.in/guEydy_U ✅ Elastic 📎 Fundamentals – lnkd.in/gYNYs9vS 📎 Manual – lnkd.in/dTVwgSbH ✅ Other SIEM Platforms 🔹 FortiSIEM – lnkd.in/e5TvYZYt 🔹 AlienVault OSSIM – lnkd.in/gRZAansT 🔹 LogSign – lnkd.in/eXnjymv6 🔹 Exabeam Fusion SIEM – lnkd.in/eYb5vZtR 🔹 Devo SIEM – lnkd.in/e8vFz3tA 🔹 Rapid7 InsightIDR – lnkd.in/e4tZkZtP 🔹 Chronicle Security (Google Cloud) – lnkd.in/eZt7Jb6r