The original post: /r/cybersecurity by /u/RotemNkunim on 2024-11-11 22:26:39.

Hey everyone, happy Monday. I had a question that I was hoping people could answer. I’m helping my CTI team define training for our analysts and we plan on using SANS quite a bit. The only question is how and for which skills.

We’ve identified SEC504 and FOR578 (I think that’s the CTI training) as two that would be beneficial. My question is the extent to which each course has comparable options from different vendors. In other words, is either of these trainings a gold standard that few other vendors can replicate? I’ve heard great things about both. The other way I’m thinking about this question is by assessing the feasibility/practicality of replicating either course through free/open-source content.

One other thing I’ll add is that our cohort of analysts tend to have better analysis skills than technical savvy. Many have former experience in the IC but didn’t work in a SOC. Perhaps that’s an important factor.

Thanks!