How to Write SOC Tickets That Build Trust and Drive Action w/ Dan Rearden
What does the ideal SOC ticket look like?
π Webcast Slides -
https://www.antisyphontraining.com/wp-content/uploads/2026/03/How-to-Write-SOC-Tickets-That-Build-Trust-and-Drive-Action.pdf
Technical skills matter, but clear communication is just as important.
Join SOC Analyst Dan Rearden for a free one-hour Antisyphon Anti-cast on using soft skills to level up your tickets.
Learn how to make alerts clear, findings impactful, and documentation useful now and later.
Chapters
Credits
Chat with your fellow attendees in the BHIS Discord server:
https://discord.gg/bhis
in the #π΄live-chat channel
π Register for FREE Infosec Webcasts, Anti-casts & Summits β
https://poweredbybhis.com
Click here to watch a video of this episode.
Brought to you by:
π Webcast Slides -
https://www.antisyphontraining.com/wp-content/uploads/2026/03/How-to-Write-SOC-Tickets-That-Build-Trust-and-Drive-Action.pdf
Technical skills matter, but clear communication is just as important.
Join SOC Analyst Dan Rearden for a free one-hour Antisyphon Anti-cast on using soft skills to level up your tickets.
Learn how to make alerts clear, findings impactful, and documentation useful now and later.
Chapters
- (00:00) - Intro- How to Write SOC Tickets That Build Trust and Drive Action - Dan Rearden
- (01:53) - About Dan Rearden
- (03:27) - On Call at 2AM...
- (05:16) - Beyond the Terminal
- (06:22) - Talking to Humans
- (09:11) - Reboot Your Vocabulary
- (14:44) - Plain Text Protocol
- (19:54) - Peer To Peer
- (24:44) - The Client Session
- (26:06) - The Client Session
- (28:13) - Hotfix today
- (31:53) - Final System Check
- (34:32) - Q&A
Credits
Chat with your fellow attendees in the BHIS Discord server:
https://discord.gg/bhis
in the #π΄live-chat channel
π Register for FREE Infosec Webcasts, Anti-casts & Summits β
https://poweredbybhis.com
Click here to watch a video of this episode.
Brought to you by:
Black Hills Information Security
Antisyphon Training
Active Countermeasures
Wild West Hackin Fest
Creators and Guests
Guest
CJ Cox
CJ Cox is the Chief Operating Officer for Black Hills Information Security (BHIS). He joined the team in 2016 and is responsible for managing the day-to-day operations and business capture of BHIS. CJ has over 25 years of experience in the IT industry as a systems administrator as well as an information system security officer, manager, and engineer. CJ feels that this is his dream job and that his favorite parts are the people he gets to work with and making security better. He is a retired Marine reservist and father of 4 who enjoys skiing, camping, golfing, and playing chess in his free time.
Guest
Dan Rearden (Haircutfish)
Dan Rearden, known in the community as HaircutFish, is an experienced SOC Analyst who transitioned into cybersecurity following a career-changing injury in 2020. Driven by a passion for solving complex puzzles and an exploratory mindset, he evolved from hardware repair into a dedicated Blue Team professional. In his current role, Dan triages high-level security tickets while actively contributing to the community through technical discourse. Dan is dedicated to refining his skills at detection engineering and advancing the field of defensive security.