Module 1: The SOC — Your War Room
Understand where you work, what you protect, and how everything connects.
6
Lessons
3
Hands-on Labs
Lessons
123456
Inside the SOC
SOC structure, L1/L2/L3 roles, shift handoffs
The Attack Landscape
Kill chain, diamond model, common attack patterns
MITRE ATT&CK for Defenders
Tactics, techniques, sub-techniques
Your Weapon System: CyberBlueSOC
Full platform walkthrough
SOC Soft Skills & Career Paths
Communication, teamwork, burnout prevention, L1→L2→L3 career progression
Compliance & Governance for SOC Analysts
Risk management basics, NIST CSF, ISO 27001, PCI-DSS, security policies and procedures
Labs
Lab 1.1 — Alert Trace
Log into Wazuh, trace 3 real alerts through the data pipeline, and build your Alert Trace Worksheet.
Lab 1.2 — ATT&CK Mapping
Browser-only: Map APT29 techniques in MITRE ATT&CK Navigator. Color-code detection gaps.
Lab 1.3 — Know Your Logs
Explore 500+ events across 10 log sources in Wazuh. Build a Log Source Reference Sheet.