Matthew GracieNov 7, 2022

It looks like I'm going to be building and teaching a Blue Teaming / Security Operations course for the Fall 2023 semester.

What do you think are the most important topics I should cover? What do you want new grads on your defensive security team to know?

Boost for reach, please!

Show threadNSNov 7, 2022

@blueteamgoon

The OSI model. Seriously. Understanding the layers that controls affect and simply tracing a packet though the various layers is a lifelong IT/Security skill. Even if something is a "black box" understanding what layers that black box interacts with can be enlightening.

Social Skills, clear communication, DevOps culture (think Phoenix Project). Very few security skills in security that don't build on basic IT concepts.

Show threadMatthew GracieNov 7, 2022
@natesubra I absolutely agree, especially with that last sentence. I've always said that infosec functions best as a "dual class" in the old Advanced Dungeons and Dragons parlance - practitioners who spend some time in help desk and network engineering first have so much more context to draw from when they make the move to security.
Show threadNS

@blueteamgoon

Definitely agree! I love the "dual class" nod. Great parallel!

Nov 7, 2022 at 3:55pmWeb