Implementing Cisco Cybersecurity Operations (SECOPS)

Course Description Schedule
 

Who should attend

  • Security Operations Center – Security Analyst
  • Computer/Network Defense Analysts
  • Computer Network Defense Infrastructure Support Personnel
  • Future Incident Responders and Security Operations Center (SOC) personnel.
  • Students beginning a career, entering the cybersecurity field.
  • Cisco Channel Partners

Prerequisites

It is highly recommended to have the following skills and knowledge before attending this course:

Course Objectives

Today's organizations are challenged with rapidly detecting cybersecurity breaches and effectively responding to security incidents. Teams of people in Security Operations Centers (SOC’s) keep a vigilant eye on security systems, protecting their organizations by detecting and responding to cybersecurity threats. CCNA Cyber Ops prepares candidates to begin a career working with associate-level cybersecurity analysts within security operations centers.

This course allows learners to understand how a Security Operations Center (SOC) functions and the introductory-level skills and knowledge needed in this environment. It focuses on the introductory-level skills needed for a SOC Analyst at the associate level. Specifically, understanding basic threat analysis, event correlation, identifying malicious activity, and how to use a playbook for incident response.

Upon completion of this course, you will be able to:

  • Define a SOC and the various job roles in a SOC
  • Understand SOC infrastructure tools and systems
  • Learn basic incident analysis for a threat centric SOC
  • Explore resources available to assist with an investigation
  • Explain basic event correlation and normalization
  • Describe common attack vectors
  • Learn how to identifying malicious activity
  • Understand the concept of a playbook
  • Describe and explain an incident respond handbook
  • Define types of SOC Metrics
  • Understand SOC Workflow Management system and automation

Course Content

Module 1: SOC Overview

  • Lesson 1: Defining the Security Operations Center
  • Lesson 2: Understanding NSM Tools and Data
  • Lesson 3: Understanding Incident Analysis in a Threat-Centric SOC
  • Lesson 4: Identifying Resources for Hunting Cyber Threats

Module 2: Security Incident Investigations

  • Lesson 1: Understanding Event Correlation and Normalization
  • Lesson 2: Identifying Common Attack Vectors
  • Lesson 3: Identifying Malicious Activity
  • Lesson 4: Identifying Patterns of Suspicious Behavior
  • Lesson 5: Conducting Security Incident Investigations

Module 3: SOC Operations

  • Lesson 1: Describing the SOC Playbook
  • Lesson 2: Understanding the SOC Metrics
  • Lesson 3: Understanding the SOC WMS and Automation
  • Lesson 4: Describing the Incident Response Plan
  • Lesson 5: Appendix A—Describing the Computer Security Incident Response Team
  • Lesson 6: Appendix B—Understanding the use of VERIS
Classroom Training
Modality: C

Duration 5 days

Price (excl. VAT)
  • Sweden: 30,900 Kr
Enroll now
Online Training
Modality: L

Duration 5 days

Enroll now
 
Click on the location to go directly to the booking page Schedule
Sweden

Currently there are no local training dates scheduled.  For enquiries please write to info@flane.se.

FLEX Training

Please see below our alternative, English language, FLEX course options.

23/07/2018 - 27/07/2018 FLEX training This is an English language FLEX course.
Time zone: Europe/London
24/09/2018 - 28/09/2018 FLEX training This is an English language FLEX course.
Time zone: Europe/Budapest
03/12/2018 - 07/12/2018 FLEX training This is an English language FLEX course.
Time zone: Europe/Sofia
17/12/2018 - 21/12/2018 FLEX training This is an English language FLEX course.
Time zone: Europe/London
Europe
Germany
04/06/2018 - 08/06/2018 Frankfurt
02/07/2018 - 06/07/2018 Munich
30/07/2018 - 03/08/2018 Berlin
27/08/2018 - 31/08/2018 Hamburg
17/09/2018 - 21/09/2018 Düsseldorf
15/10/2018 - 19/10/2018 Stuttgart
12/11/2018 - 16/11/2018 Frankfurt
10/12/2018 - 14/12/2018 Münster
Austria
16/07/2018 - 20/07/2018 Vienna (iTLS)
Bulgaria
03/12/2018 - 07/12/2018 Sofia Course language: English
Hungary
24/09/2018 - 28/09/2018 Budapest Course language: English
Italy
21/05/2018 - 25/05/2018 Milan
18/06/2018 - 22/06/2018 Rome
30/07/2018 - 03/08/2018 Milan
01/10/2018 - 05/10/2018 Rome
05/11/2018 - 09/11/2018 Milan
26/11/2018 - 30/11/2018 Rome
Switzerland
28/05/2018 - 01/06/2018 Zurich
15/10/2018 - 19/10/2018 Zurich
United Kingdom
23/07/2018 - 27/07/2018 London, City
17/12/2018 - 21/12/2018 London, City
North America
United States
18/06/2018 - 22/06/2018 Herndon/Reston, VA
13/08/2018 - 17/08/2018 Online Training Time zone: CST6CDT Course language: English
01/10/2018 - 05/10/2018 Online Training Time zone: US/Pacific Course language: English
05/11/2018 - 09/11/2018 Herndon/Reston, VA
10/12/2018 - 14/12/2018 Online Training Time zone: CST6CDT Course language: English
Canada
18/06/2018 - 22/06/2018 Ottawa, ON
13/08/2018 - 17/08/2018 Online Training Time zone: Canada/Central Course language: English
01/10/2018 - 05/10/2018 Online Training Time zone: Canada/Pacific Course language: English
05/11/2018 - 09/11/2018 Ottawa, ON
Asia Pacific
Australia
28/05/2018 - 01/06/2018 Melbourne
09/07/2018 - 13/07/2018 Sydney
20/08/2018 - 24/08/2018 Melbourne
08/10/2018 - 12/10/2018 Sydney
19/11/2018 - 23/11/2018 Melbourne
07/01/2019 - 11/01/2019 Sydney
This computer icon in the schedule indicates that this date/time will be conducted as Instructor-Led Online Training.
This is a FLEX course, which is delivered both virtually and in the classroom. Please note, local pricing is applicable.