Archive - The Cybersec Café

Your SOC is not an IT Helpdesk. So Stop Running it like One.

Cybersec Café #79 - 08/12/25

Aug 12 •

I Wish I Knew This When I Started in Cybersecurity

Cybersec Café #78 - 08/05/25

Aug 5 •

July 2025

Cybersecurity is Data: Collect, Analyze, Interpret

Cybersec Café #77 - 07/29/25

Jul 29 •

Day in the Life of a Security Engineer

Cybersec Café #76 - 07/15/25

Jul 15 •

Understanding the Full Spectrum of Threat Indicators

Cybersec Café #75 - 07/08/25

Jul 8 •

Cloud Security Fundamentals: IAM, RBAC, PoLP, and more…

Cybersec Café #74 - 07/01/25

Jul 1 •

June 2025

How to Actually Leverage the MITRE ATT&CK Framework in Security Operations

Cybersec Café #73 - 06/24/25

Jun 24 •

The Playbook for Playbooks

Cybersec Café #72 - 06/17/25

Jun 17 •

Tuning Detections isn’t Hard Unless You Make it Hard

Cybersec Café #71 - 06/10/25

Jun 10 •

Security Engineer Starter Guide: Security Operations

Cybersec Café #70 - 06/03/25

Jun 3 •

May 2025

5 Lessons Learned as Incident Commander of the Biggest Security Incident of My Career

Cybersec Café #69 - 05/27/25

May 27 •

My Log Source-Agnostic Methodology to Understanding Big Data

Cybersec Café #68 - 05/20/25

May 20 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts