What is Boss of the SOC?

Boss of the SOC (BOTS) is a Capture the Flag-esque (CTF) competition that is played in teams of up to four players and hosted by Splunk and mnemonic. The game features contestants playing the role of a SOC Security Analyst. Participants are challenged to answer questions about security-related scenarios. Some are easy. Some are hard. Contestants will use their own laptop (OS doesn't matter as long as it can load Splunk in its browser) to access the online BOTS environment. The event will be held virtually using Zoom.

Nordics?!

That’s right! For the first time ever, you’ll be able to test your skills against the best security teams throughout the Nordics. Bragging rights and national pride are at stake!

The scenario

You will role play as the quirky Security Analyst "Alice Bluebird," who is helping Frothly, a thriving home brewing supply company. Thanks to Alice, Frothly continues to thrive in spite of constant nation-state attacks and has big plans to innovate and expand, which they’ll quickly learn comes with a whole new set of challenges.

Alice must continue to expand her knowledge of cloud, as well as on-premises windows/Linux hosts, firewalls and even ICS/SCADA data all while building a team to improve and streamline Frothly’s defenses. Contestants will pivot through realistic data using Splunk’s analytics-driven security platform and the wild, wild web. All this while racing the clock to identify the who, how and where through a full forensic investigation.

This BOTS will leverage the BOTS v4.0 dataset launched at Splunk .conf 2019.

https://www.mnemonic.no/events/splunk-boss-of-the-soc-2020/