Security Operation Center (SOC) Engineering الأمن السيبراني

• Practice on SIEM solution (IBM Q-Radar):

- Viewed all Logs comes from all network and monitor devices

- Applied advanced Search and AQL to mitigate and limit results

- Set rules to hit offenses (Alerts) and Made reports

- Learned how to Escalate the incidents to L2, L3 and used ticketing system

• Basic Information About Incident Response (IR)

• Intro in Threat Intelligence:

used X-Force to check the IPs

• SOAR

• Had a tour in Data-center of We company in smart village