Getting Started in Cyber Threats

View All

Cyber Threats

7 Types of Cyber Threats & How to Prevent Them [2022 Guide]

Learn about the most important cyber threats facing organizations in 2022 and beyond, recent cyber attacks, and 4 strategies for preventing cyber threats.

Cyber Threats

5 Signs of a Phishing Email and How to Put a Stop to Phishing Attacks

Take an in-depth look at the 5 tell-tale signs of a phishing email, and learn best practices for preventing phishing attacks in your organization.

Cyber Threats

8 Devastating Phishing Attack Examples (and Prevention Tips)

See some of the most catastrophic phishing attack examples, including attacks against Google and Facebook, Colonial Pipeline, and the US Department of Interior.

Cyber Threats

What Is an Attack Surface and 7 Ways to Minimize It

An attack surface is the entire area of a system or network that is vulnerable to cyberattacks. It includes all potential unauthorized entry points.

View All

Getting Started in Digital Forensics

View All

digital cyber forensics incident response

Digital Forensics

What is Digital Forensics and Incident Response (DFIR)?

Understand the importance of DFIR, how it is used in incident response, how SOAR can benefit DFIR, and how to evaluate and select DFIR services.

Digital Forensics

Understanding Digital Forensics: Process, Techniques, and Tools

Understand the importance of digital forensics, types of digital forensics, process and techniques, and how DFIR merges forensics with incident response.

Digital Forensics

Digital Forensics: Get Started with These 9 Open Source Tools

Discover powerful, free-to-use digital forensics tools and use them to learn and practice digital forensics.

View All

Getting Started in Endpoint Security

View All

Endpoint Security

Complete Guide to Endpoint Security: Solutions and Best Practices

Endpoint security enables organizations to protect endpoints, such as workstations and servers, and prevent their use as entry points by attackers.

Endpoint Security

EDR Security: How EDR Supports an Endpoint Security Strategy

EDR security solutions record all activities occurring on endpoints and workloads to provide real-time visibility to uncover incidents that might go undetected.

Endpoint Security

What Is an Endpoint Protection Platform (EPP)?

An EPP is a collection of endpoint security tools, typically including antivirus, data loss prevention, endpoint detection and response (EDR), and data encryption.

Endpoint Security

What Is Endpoint Protection? Solutions and Best Practices

Endpoint protection describes security solutions that protect endpoints such as workstations, mobile devices, servers, and cloud resources from data breaches.

View All

Getting Started in Incident Response

View All

Incident Response

What is Incident Response? Process, Frameworks, and Tools

Understand the incident response process, common incident response frameworks like SANS and NIST, team responsibilities, and supporting tools and technologies.

Incident Response

What is an Incident Response Policy and How to Create One

Learn about the purpose and scope of an incident response policy and how you can create one for your organization.

Incident Response

Incident Response Plan: Steps and 8 Critical Considerations

Learn how to build an incident response plan, why incident response planning is important, and learn critical considerations to getting incident response right.

Incident Response

NIST Incident Response: Framework and Key Recommendations

Understand the National Institute of Standards and Technology (NIST)’s incident response guidelines and how to implement them in your organization.

View All

Getting Started in MDR Security

View All

MDR Security

Managed Security Services: MSP, MSSP, MDR, and More

Learn how managed security services can help your organization mitigate threats, manage security operations, and secure critical assets.

MDR Security

Understanding MDR Security: Benefits and Core Technologies

Learn about Managed Detection and Response (MDR) services, how they can improve security, and key technologies they offer including EDR, XDR, and SIEM.

MDR Security

What is Managed Detection and Response (MDR)?

Learn how MDR services originated, the challenges MDR can solve, key features of MDR services, and how to choose the best MDR service for your organization.

MDR Security

What Are Managed Detection and Response (MDR) Services?

Managed detection and response (MDR) services provide proactive and continuous monitoring and protection for an organization's networks, devices, and data.

View All

Getting Started in Microsoft Security

View All

Microsoft Security

Microsoft Defender for Endpoint: Architecture, Features, and Plans

Learn about Microsoft Defender for Endpoint (formerly Microsoft Defender Advanced Threat Protection), key capabilities and the new Plan 1 and Plan 2.

Microsoft Security

Microsoft Defender for Identity: Architecture and Key Capabilities

Discover Microsoft Defender for Identity, a solution that enables detection and investigation of identity threats like account compromise and malicious insiders.

Microsoft Security

Microsoft 365 Defender

Microsoft 365 Defender is an integrated platform including multiple Microsoft security solutions.

Microsoft Security

Microsoft Defender for Office 365: Workflow, Features, and Plans

Learn about Microsoft Defender for Office 365, how it protects enterprise email and users, key capabilities and pricing plans.

View All

Getting Started in Security Operations Center

View All

Security Operations Center

What Is a Security Operations Center (SOC)?

Ultimate guide to the modern SOC: security operations, SOC as a service, SOC frameworks, building your SOC, and best practices for a successful SOC.

Security Operations Center

4 Security Operations Center Frameworks You Should Know

Learn about some of the most respected security operations center (SOC) frameworks that can help you make security operations more effective.

Security Operations Center

SOC as a Service: Outsourcing Your Security Operations Center

What does it mean to outsource your SOC? Understand SOC as a Service solutions that provide end-to-end security capabilities for organizations of all sizes.

Security Operations Center

What Is CISO as a Service (vCISO)?

Learn about CISO as a Service, also known as CISOaaS or vCISO, key benefits, and whether a vCISO is the right solution for your security needs.

View All

Getting Started in Splunk SIEM

View All

Splunk SIEM

Splunk SIEM with Splunk Enterprise, Cloud, and Splunk ES

Learn how Splunk can support advanced SIEM use cases via Splunk Enterprise, Splunk Cloud, and Splunk Enterprise Security (ES).

Splunk SIEM

Understanding Splunk Cloud: Capabilities and Related Solutions

Discover the Splunk Cloud Platform, its features and capabilities, and how it relates to other solutions like Splunk Enterprise and Splunk Security Cloud.

Splunk SIEM

Splunk Enterprise: Architecture, Features, and Capabilities

Splunk Enterprise is the basic component in the Splunk platform. It lets you ingest streaming data, process it, make it searchable, and set up dashboards.

Splunk SIEM

Splunk Enterprise Security: Use Cases, Features, and Process

Learn about Splunk Enterprise Security, Splunk’s SIEM solution. Understand capabilities, investigation process, and solution pricing.

View All

Getting Started in Third-Party Risk Management

View All

Third-Party Risk Management

Third-Party Risk Management (TPRM): A Complete Guide

Learn what are the third-party risks facing your organization, how to build a Third-party Risk Management framework, and 6 critical TPRM best practices.

Third-Party Risk Management

Third-Party Security: 5 Steps to Securing Your Ecosystem

Understand the importance of third-party security with these 5 steps to securing your ecosystem.

Third-Party Risk Management

Third-Party Risk Assessment: A Practical Guide

Learn why third-party risk assessments are critical to your organization’s security, how to perform an assessment, and key best practices.

Third-Party Risk Management

Supply Chain Risks, Threats, and Management Strategies

To address supply chain cybersecurity, organizations must be aware of the risks. Supply chains expose many opportunities for exploitation.

View All

Getting Started in Threat Intelligence

View All

Threat Intelligence

Threat Intelligence: Complete Guide to Process and Technology

Cyber threat intelligence refers to actionable information about cyber threats, which reaches the security team after processing data and classification.

Threat Intelligence

Threat Hunting: How It Works and 4 Tips for Success

Learn how threat hunting can make your security strategy more proactive, help identify APTs and evasive threats and prevent attacks in their early stages.

Threat Intelligence

Threat Intelligence Tools: Types, Benefits & Best Practices

Learn how threat intelligence tools can support security teams and augment security tools and automated incident response.

Threat Intelligence

Threat Intelligence Feeds Explained

Understand how threat intelligence feeds can contribute to your security efforts, where they get their data, and how to find the best feeds for your organization.

View All

Getting Started in XDR

View All

XDR

What Is XDR (Extended Detection and Response)?

Understand how XDR solutions address key SOC challenges and what is important to look for in your next XDR solution.

XDR

XDR Security: How Will XDR Impact Your SOC?

Learn about Extended Detection and Response (XDR), learn how it can benefit security operations and how it will transform your SOC in the years to come.

XDR

MDR vs XDR: Which Solution Will Save You More Time?

Understand the differences between Managed Detection and Response (MDR) and eXtended Detection and Response (XDR), and which one saves more time for security teams.

XDR

EDR vs. XDR: What is the Difference and Will XDR Replace EDR?

Understand the differences and similarities between Endpoint Detection and Response (EDR) and eXtended Detection and Response (XDR).

View All

Cyber Defense Platform

Learning Center

What would you like to learn?

Getting Started in Cyber Threats

Getting Started in Digital Forensics

Getting Started in Endpoint Security

Getting Started in Incident Response

Getting Started in MDR Security

Getting Started in Microsoft Security

Getting Started in Security Operations Center

Getting Started in Splunk SIEM

Getting Started in Third-Party Risk Management

Getting Started in Threat Intelligence

Getting Started in XDR