37 lines
1.2 KiB
Python
37 lines
1.2 KiB
Python
def get_content():
|
|
"""
|
|
Returns structured content for SOC transformation and modern practices.
|
|
"""
|
|
return [
|
|
{
|
|
"title": "Building a Sustainable SOC",
|
|
"content": """
|
|
- Move away from traditional L1, L2, L3 structures to reduce burnout.
|
|
- Enable junior analysts to manage their own incidents with mentoring.
|
|
- Focus on creating detection engineers and platform service teams:
|
|
- Detection Engineers:
|
|
- Investigate, triage, respond.
|
|
- Detection and automation creation.
|
|
- Platform Service:
|
|
- SIEM architecture, playbook development.
|
|
- Integration and data pipeline management.
|
|
"""
|
|
},
|
|
{
|
|
"title": "Iterative Improvement",
|
|
"content": """
|
|
- Prioritize actionable improvements and document processes.
|
|
- Understand the detection surface to focus on high-value areas.
|
|
- Collaborative outsourcing and detection engineering are key.
|
|
"""
|
|
},
|
|
{
|
|
"title": "Key Takeaways",
|
|
"content": """
|
|
1. Build systems to support emerging practitioners.
|
|
2. Maintain relentless focus on the mission.
|
|
3. Prioritize actionable and iterative improvements.
|
|
"""
|
|
}
|
|
]
|