Browsed by
Month: September 2018

Security Operations Center (SOC) ROLES

Security Operations Center (SOC) ROLES

The SOC manager should develop a workflow model and implement SOPs for incident-handling that guide the analysts through the triage and response procedures. Security analyst tiered responsibilities may include: Tier 1 Continuously monitors the alert queue Triages security alerts Monitors the health of the security sensors and endpoints Collects data and context necessary to initiate Tier 2 work Tier 2 Performs deep-dive incident analysis by correlating data from various sources Determines if a critical system or data set has been…

Read More Read More

Linux Process Creation

Linux Process Creation

New processes are created in Linux with a fork-and-exec mechanism. When a process makes a fork call, a new process with a new PID is created. The process that made the fork call is the parent process and the new process is the child process. The child process starts as a duplicate of the parent process, with some significant status changes. Both processes receive a value from the fork call. The parent process receives the PID of the child process…

Read More Read More