Cybersecurity Training. PHOTO: Cybercrime Magazine.

How To Prepare SOC Analysts For Real-World Cyberattacks

Next generation cyber ranges for training incident responders

Debbie Gordon

Nashville, Tenn. – Nov. 28, 2020

Traditionally, cyber ranges have been large investments that provided military and commercial organizations with virtual environments to test infrastructure and security technologies in order to identify and assess vulnerabilities. These cyber ranges allowed an organization to evaluate its security posture and identify and address security gaps.

With a traditional cyber range, an organization was able to study the effectiveness of its cybersecurity technologies and ensure proper configuration and administration. A traditional cyber range, however, was not focused on an organization’s last line of defense — the SOC analysts and Incident response PEOPLE. 

SOC analysts and Incident responders are the last line of defense against a cyber attack, and they require skills and training to understand how to quickly detect and remediate any type of cyber attack. Now, a next-generation cyber range provides organizations with the ability to prepare SOC analysts for real-world cyber attacks by generating attacks that require the SOC operators to effectively detect, investigate, and remediate cyber attacks in a simulated environment.

WHAT IS A NEXT-GEN CYBER RANGE?


Cybercrime Radio: Debbie Gordon, founder & CEO at Cloud Range

Solving the skills shortage with a virtual cyber range


Focuses on the people in the SOC

A next-gen cyber range replicates an organization’s SOC environment, a “virtual SOC.”  It is customized to an organization’s technical infrastructure, and it may include licensed versions of the same security tools that SOC analysts use every day. Thus, a next-gen cyber range mimics a real-world SOC environment and provides SOC analysts with hands-on training and experience that is measured with details that prove to leadership that the skills are being improved, and thus, the organization is protected at the last line of defense.

Additionally, a next-gen cyber range includes a dedicated network that can emulate an organization’s network. The virtual network environment can be injected with traffic to simulate user emails, web-surfing, server communications, and other network operations. This ensures that SOC analysts can see how a real-world cyber attack can affect an organization’s network operations and plan accordingly.

No more costly infrastructure

Next-gen cyber ranges have come a long way. Cloud-based access also provides organizations with the ability to have consumption-based usage of a customizable cyber range, eliminating the need for costly infrastructure like the traditional cyber range of yesterday. Today’s next-gen cyber range also allows companies to have a secure environment both to protect production environments as well as use proprietary processes, technology, and design in a virtual environment.

WHY DO YOU NEED A NEXT-GEN CYBER RANGE?


Cybercrime TV: Cloud Range for Partners and CISOs

The cyber range platform for onsite or virtual simulation training exercises


A next-gen cyber range is quickly becoming a top option to address the global cybersecurity skills shortage, providing SOC analysts with the skills, training, and experience they need to keep pace with evolving cyber threats.

A next-gen cyber range goes beyond a traditional cyber range because it allows organizations to test vulnerabilities, along with preparing SOC analysts for real-world cyber attacks. In doing so, a next-gen cyber range accelerates and improves cyber attack detection, response, and remediation and addresses the cybersecurity skills shortage.

Cloud Range Archives

Debbie Gordon is the founder and CEO at Cloud Range


Sponsored by Cloud Range

Cloud Range exists to ensure that our customers and partners build and maintain a successful cyber range and simulation program within their organizations.

Cloud Range Cyber is led by a leading group of security executives and engineers who identified the need for military-grade simulation training for enterprise security teams. By developing a flexible training solution, enterprise security teams and MSSPs can overcome the skills gap while ensuring that their teams are truly prepared for cyber combat.

Our mission is to make simulation training a standard part of cybersecurity certifications and education, no different than other professions that require hands-on skills development before becoming a functioning practitioner. This allows companies to ensure that their security teams have the opportunity to train, practice, and implement security defense techniques in their organizations before they happen.