Use of AI in monitoring by a (SOC): training and education processes for technical personnel Utilización de AI en el monitoreo realizado por un (SOC): procesos formativos y de capacitación del personal técnico

It is currently relevant to analyze the role that the use of Artificial Intelligence (AI) plays in the training and monitoring processes in a Security Operations Center (SOC). It promotes the improvement of the detection, response and prevention capabilities of an organization by unifying and coordinating all cybersecurity technologies and operations. The present study aims to analyze the training, academic and instructional process that technicians receive in the field of innovative technologies to strengthen cybersecurity. With a quantitative methodological approach, it was possible to carry out objective measurement with generalization of results by allowing efficiency in data collection through surveys to 37 technicians trained in training processes using an AI tool (Darktrace). To do this, a comparative analysis of the analytical capacity of Level 1 technical staff, once they have been trained and trained in the use of AI tools, is proposed; exploring educational strategies through shift-based practices. The result of this work is to test the contribution of AI in the analytical capacity of SOC Level 1 technicians.