Franklin Fitch’s Post

We need the right people in the OT security space! 😊 Last week, during our LinkedIn Live session, I asked Bharath Balasubramanyam about the state of hiring in OT security. He shared insights on roles like presales, solution specialists, and implementation engineers. But what surprised me was the spike in regulatory hiring! 📈 As national regulators step up compliance measures, the hiring trend is leaning heavily toward regulatory roles. IEC 62443 NIST 2 NCA OTCC If you're a recruiter or thought leader, I'd love to hear your thoughts on the current hiring trends in OT security. Drop a comment below! 👇 #OT #ICS #OTCybersecurity #LinkedInLive

And another one: $20B company hiring for a global physical security manager reporting directly to the CISO. Converged -> Diverged -> Converged - Historical trend #OSI_layer_one #security #convergedsecurity #askmcconnell #ciso #cso #cybersecurity #informationsecurity #physicalsecurity #executiveprotection #fraud #audit #supplychainsecurity #securitymetrics

The opportunity in Cybersecurity Business

I'm just a regular SOC analyst who: - Drinks too much Blue Berry and Vanilla Redbull ☕ - Gets lost in Elastic documentation at 2 AM - Forgets to check logs before raising alerts - Sometimes forgets to check port numbers But today I: ✅ Set up a Fleet server from scratch ✅ Enrolled Windows endpoints ✅ Got security telemetry flowing ✅ Caught actual failed login attempts in Elastic The point? You don't need to be a "10x engineer" to do meaningful security work. Most of us are just regular folks: Googling error messages Double-checking port configurations Learning as we build Breaking things before fixing them Real security work isn't about being perfect. It's about being persistent and learning from each deployment. And you know what? Those Event Code 4625s look just as suspicious whether you're a security genius or just a normal analyst doing their best. To all my fellow "regular" SOC analysts: You're doing great. Keep building. Keep learning. Keep defending. 💪 Who else is figuring things out as they go? 🤚 #CyberSecurity #BlueTeam #RedTeam #SOCLife #LearnInPublic

Day 33 #100days of cybersecurity challenge People, Technology, and Processes in SOC People: The backbone of any SOC is its team. Roles include: Tier 1 Analyst: Monitors and filters alerts. Tier 2 Analyst: Investigates and handles incidents. Threat Hunters: Proactively search for undetected threats. SOC Manager: Ensures smooth operations and compliance. Technology: SOC relies on advanced tools like: SIEM (Security Information and Event Management): Correlates and analyzes security data. EDR (Endpoint Detection and Response): Monitors endpoint activities. Threat Intelligence Platforms: Provide real-time threat insights. Processes: Standardized processes ensure consistency in handling incidents: Incident identification and triage. Escalation and containment. Recovery and documentation. SOC's success depends on the seamless integration of people, technology, and processes.

The decision between setting up your own SOC or hiring a security operations solutions provider is complex and depends on the individual requirements and resources of a company. Join our webinar and learn the pros and cons of both options to make the right decision for your business.

𝐀𝐫𝐞 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐓𝐡𝐫𝐞𝐚𝐭𝐬 𝐊𝐞𝐞𝐩𝐢𝐧𝐠 𝐘𝐨𝐮 𝐔𝐩 𝐚𝐭 𝐍𝐢𝐠𝐡𝐭? 𝐇𝐞𝐫𝐞'𝐬 𝐘𝐨𝐮𝐫 𝐒𝐨𝐥𝐮𝐭𝐢𝐨𝐧! Cyberattacks are relentless, and every second counts. Yet, finding the right talent to protect your business can feel like an endless struggle. That's where MindWhiz Staff Augmentation steps in to: ✅ 𝐅𝐢𝐥𝐥 𝐂𝐫𝐢𝐭𝐢𝐜𝐚𝐥 𝐑𝐨𝐥𝐞𝐬 𝐅𝐚𝐬𝐭 – Need SOC engineers, analysts, or compliance experts? We deploy professionals who are ready to integrate into your team. ✅ 𝐒𝐭𝐚𝐲 𝐎𝐧𝐞 𝐒𝐭𝐞𝐩 𝐀𝐡𝐞𝐚𝐝 – Access talent trained to handle evolving threats, from malware to data breaches. ✅ 𝐑𝐞𝐝𝐮𝐜𝐞 𝐎𝐯𝐞𝐫𝐡𝐞𝐚𝐝 – Scale your team based on your immediate needs without the long-term commitments of hiring full-time staff. ✅ 𝐒𝐩𝐞𝐜𝐢𝐚𝐥𝐢𝐳𝐞𝐝 𝐄𝐱𝐩𝐞𝐫𝐭𝐢𝐬𝐞 – Get professionals with the right skills to handle your unique cybersecurity challenges. With MindWhiz, you don’t just fill positions—you strengthen your defenses with top-tier professionals. 📞 Don’t wait until it’s too late. Call +1(832)900-4608 🌐 Visit: mindwhiz.com #CyberThreats #StaffingSolutions #CybersecurityTeam

3 Best Entry Level cybersecurity roles to apply as a complete beginner in 2025... 1. SOC Analyst A Security Operations Center (SOC) Analyst is a cybersecurity professional responsible for monitoring, analyzing, and responding to security threats that target an organization's IT infrastructure and data. They act as the first line of defense against cyberattacks, working to detect and mitigate threats before they can cause significant damage. 2. IT Help Desk Technician with Cybersecurity Focus This position combines the traditional IT Help Desk Technician role with a strong emphasis on cybersecurity best practices. The ideal candidate will possess a blend of technical expertise, strong customer service skills, and a proactive approach to cybersecurity. 3. GRC Analyst A GRC (Governance, Risk, and Compliance) Analyst plays a crucial role in ensuring an organization's operations align with legal, regulatory, and ethical standards. They help identify, assess, and mitigate risks while promoting good governance practices. #cybersecurity #breakintotech #techtok #cybersecuritytips #cybersecurityanalyst #techjobs #technology https://lnkd.in/gzsuYsSM

In this post, we explore some of the guide’s best tips on how to move from an entry-level SOC analyst to a leader in security operations. A great read.. #noble1 TOM SHAW

Hypothesis for discussion - You are not a complete security professional if you don't have a basic understanding/literacy for ◾All technologies in use in the enterprise ◾All stages of the kill chain ◾All the reasons why attackers get on the keyboard in the morning and how they get paid   This has generally been a recognized requirement for security architects, but I recently came to the opinion that this is also required to be a good security engineer or operations person (SecOps/SOC or Posture Management/Vuln Management).   So many of us in the security industry were taught that there are "network security people" and "identity security people" (or worse "X Vendor people" and "Y Vendor people") that people lost sight that these are just specializations of larger roles.   I don't think everyone needs deep 400 level knowledge, but we all need this broader context to be effective and not waste time on distracting ratholes (or believe that any X solution is a silver bullet that would block all attacks)   Am I right? Am I missing something?   I am very interested in opinions and experience here! Do you agree or disagree? Why?