Skill Level Scale: 🟥 Awareness · 🟧 Beginner · 🟨 Hands-On · 🟩 SOC-Ready
Detection Engineering & SIEM Operations
Splunk SIEM
Searching, filtering, alert triage, and dashboards
🟥🟧🟨🟩🟩 (4/5)
Microsoft Sentinel
KQL queries, incident workflows
🟥🟧🟨🟨🟩 (3/5)
IAM & Enterprise Security Controls
Azure AD / Entra ID
Incident correlation, MFA, identity governance
🟥🟧🟨🟩🟩 (4/5)
Microsoft Defender (MDE/MDO)
Alert investigation & response
🟥🟧🟨🟨🟩 (3/5)
Network Monitoring & Endpoint Security
Wireshark & Network Traffic Basics
Protocol review & PCAP analysis
🟥🟧🟧🟨🟩 (3/5)
SOC Operations & Case Management
ServiceNow / Ticketing
Escalation, shift handoffs, documentation
🟥🟧🟨🟩🟩 (4/5)