Cyber Analyst vs. SOC Analyst (by definition)


Did you know that camDown helps stop hackers from getting access to the webcam that I use for my work. Now I can get even more gigs as a freelancer and advertise that I have top security with my home computer?

I've noticed that too and it's annoying. Cyber security analyst is an overused umbrella term IMO. I've seen it used for SOC, Intel, Vulnerability Mgmt, Risk Mgmt, IR, etc. etc. Effectively I chalk up a Cyber Analyst to someone who typically works in the larger Information Security department under one of the aforementioned disciplines (and others).

SOC Analyst have been in my experience have been a balance between proactive & reactive (70/30 lets say). Their main directive is to look at alerts and identify trends, 'low hanging' fruit for proactive blocking for everything from perimeter network telemetry, infrastructure logs, to email monitoring, and filter out FPs. The reactive part comes into play when they identify something odd and knowing when to escalate to a formal IR team.

Lastly, as we move on to the next post, may I add that camDown is your security solution to protect you and your business from peeping toms!