Implementing Cisco Cybersecurity Operations (SECOPS)

Course Description Schedule
 

Who should attend

  • Security Operations Center – Security Analyst
  • Computer/Network Defense Analysts
  • Computer Network Defense Infrastructure Support Personnel
  • Future Incident Responders and Security Operations Center (SOC) personnel.
  • Students beginning a career, entering the cybersecurity field.
  • Cisco Channel Partners

Prerequisites

It is highly recommended to have the following skills and knowledge before attending this course:

Course Objectives

Today's organizations are challenged with rapidly detecting cybersecurity breaches and effectively responding to security incidents. Teams of people in Security Operations Centers (SOC’s) keep a vigilant eye on security systems, protecting their organizations by detecting and responding to cybersecurity threats. CCNA Cyber Ops prepares candidates to begin a career working with associate-level cybersecurity analysts within security operations centers.

This course allows learners to understand how a Security Operations Center (SOC) functions and the introductory-level skills and knowledge needed in this environment. It focuses on the introductory-level skills needed for a SOC Analyst at the associate level. Specifically, understanding basic threat analysis, event correlation, identifying malicious activity, and how to use a playbook for incident response.

Upon completion of this course, you will be able to:

  • Define a SOC and the various job roles in a SOC
  • Understand SOC infrastructure tools and systems
  • Learn basic incident analysis for a threat centric SOC
  • Explore resources available to assist with an investigation
  • Explain basic event correlation and normalization
  • Describe common attack vectors
  • Learn how to identifying malicious activity
  • Understand the concept of a playbook
  • Describe and explain an incident respond handbook
  • Define types of SOC Metrics
  • Understand SOC Workflow Management system and automation

Course Content

Module 1: SOC Overview

  • Lesson 1: Defining the Security Operations Center
  • Lesson 2: Understanding NSM Tools and Data
  • Lesson 3: Understanding Incident Analysis in a Threat-Centric SOC
  • Lesson 4: Identifying Resources for Hunting Cyber Threats

Module 2: Security Incident Investigations

  • Lesson 1: Understanding Event Correlation and Normalization
  • Lesson 2: Identifying Common Attack Vectors
  • Lesson 3: Identifying Malicious Activity
  • Lesson 4: Identifying Patterns of Suspicious Behavior
  • Lesson 5: Conducting Security Incident Investigations

Module 3: SOC Operations

  • Lesson 1: Describing the SOC Playbook
  • Lesson 2: Understanding the SOC Metrics
  • Lesson 3: Understanding the SOC WMS and Automation
  • Lesson 4: Describing the Incident Response Plan
  • Lesson 5: Appendix A—Describing the Computer Security Incident Response Team
  • Lesson 6: Appendix B—Understanding the use of VERIS
Classroom Training
Modality: C

Duration 5 days

Price (excl. VAT)
  • Sweden: 30,900 Kr
Enroll now
Online Training
Modality: L

Duration 5 days

Enroll now
 
Click on the location to go directly to the booking page Schedule
Sweden

Currently there are no local training dates scheduled.  For enquiries please write to info@flane.se.

FLEX Training

Please see below our alternative, English language, FLEX course options.

24/09/2018 - 28/09/2018 FLEX training This is an English language FLEX course.
Time zone: Europe/Budapest
03/12/2018 - 07/12/2018 FLEX training This is an English language FLEX course.
Time zone: Europe/Sofia
17/12/2018 - 21/12/2018 FLEX training This is an English language FLEX course.
Time zone: Europe/London
Europe
Germany
27/08/2018 - 31/08/2018 Hamburg
17/09/2018 - 21/09/2018 Düsseldorf
26/11/2018 - 30/11/2018 Munich
21/01/2019 - 25/01/2019 Hamburg
11/02/2019 - 15/02/2019 Düsseldorf
18/03/2019 - 22/03/2019 Frankfurt
08/04/2019 - 12/04/2019 Stuttgart
13/05/2019 - 17/05/2019 Munich
Austria
08/04/2019 - 12/04/2019 Vienna (iTLS)
29/07/2019 - 02/08/2019 Vienna (iTLS)
Bulgaria
03/12/2018 - 07/12/2018 Sofia Course language: English
France
03/06/2019 - 07/06/2019 Paris
16/12/2019 - 20/12/2019 Paris
Hungary
24/09/2018 - 28/09/2018 Budapest Course language: English
Italy
01/10/2018 - 05/10/2018 Rome
05/11/2018 - 09/11/2018 Milan
26/11/2018 - 30/11/2018 Rome
Switzerland
15/10/2018 - 19/10/2018 Zurich
25/02/2019 - 01/03/2019 Zurich
19/08/2019 - 23/08/2019 Zurich
United Kingdom
17/12/2018 - 21/12/2018 London, City
North America
United States
06/08/2018 - 10/08/2018 Denver
06/08/2018 - 10/08/2018 Online Training Time zone: US/Mountain Course language: English
13/08/2018 - 17/08/2018 Online Training Time zone: US/Central Course language: English
20/08/2018 - 24/08/2018 Online Training Time zone: US/Central Course language: English
17/09/2018 - 21/09/2018 Rosemount, IL
17/09/2018 - 21/09/2018 Online Training Time zone: US/Central Course language: English
24/09/2018 - 28/09/2018 Campbell, CA
01/10/2018 - 05/10/2018 Online Training Time zone: US/Pacific Course language: English
Canada
13/08/2018 - 17/08/2018 Online Training Time zone: Canada/Central Course language: English
01/10/2018 - 05/10/2018 Online Training Time zone: Canada/Pacific Course language: English
05/11/2018 - 09/11/2018 Ottawa, ON
Asia Pacific
Australia
20/08/2018 - 24/08/2018 Melbourne
08/10/2018 - 12/10/2018 Sydney
19/11/2018 - 23/11/2018 Melbourne
07/01/2019 - 11/01/2019 Sydney
This class will become guaranteed to run with one more student registration.
This computer icon in the schedule indicates that this date/time will be conducted as Instructor-Led Online Training.
This is a FLEX course, which is delivered both virtually and in the classroom. Please note, local pricing is applicable.
 

Accessing our website tells us you are happy to receive all our cookies. However you can change your cookie settings at any time. Find out more.   Got it!