Starts from:Tue, July 5, 2022

11 Al Razi Street,Cairo,Nasr City,Egypt

Map it
Course Feature
  • Category IT-Network
  • Vendor Cisco
  • Duration 40 Hours
  • Exam 210-255
Class Description

Today’s organizations are challenged with rapidly detecting cybersecurity breaches and effectively responding to security incidents. Teams of people in Security Operations Centers (SOC’s) keep a vigilant eye on security systems, protecting their organizations by detecting and responding to cybersecurity threats. Cisco Cyber Ops certification prepares candidates to begin a career working with associate-level cybersecurity analysts within security operations centers.

This course is the first certification course of CCNA CyberOps Certification Learning Path which includes the following courses:

Understanding Cisco Cybersecurity Fundamentals (SECFND)
Implementing Cisco Cybersecurity Operations (SECOPS)

Implementing Cisco Cybersecurity Operations (SECOPS)

  1. The course gives you foundation-level knowledge of security incident analysis techniques used in a Security Operations Center (SOC).
  2. You will learn how to identify and analyze threats and malicious activity, correlate events, conduct security investigations, use incident playbooks, and learn SOC operations and procedures.
  3. This is the second of two courses that prepare you for the Cisco® CCNA® Cyber Ops certification.
  4. This certification validates your knowledge and hands-on skills to help handle cybersecurity events as an associate-level member of an SOC team.

SOC Overview

Defining the Security Operations Center
Understanding NSM Tools and Data
Understanding Incident Analysis in a Threat-Centric SOC
Identifying Resources for Hunting Cyber Threats

Security Incident Investigations

Understanding Event Correlation and Normalization
Identifying Common Attack Vectors
Identifying Malicious Activity
Identifying Patterns of Suspicious Behavior
Conducting Security Incident Investigations

SOC Operations

Describing the SOC Playbook
Understanding the SOC Metrics
Understanding the SOC WMS and Automation
Describing the Incident Response Plan

After taking this course, you should be able to:

  1. Describe the three common SOC types, tools used by SOC analysts, job roles within the SOC, and incident analysis within a threat-centric SOC.
  2. Explain security incident investigations, including event correlation and normalization and common attack vectors, and be able to identify malicious and suspicious activities.
  3. Explain the use of a SOC playbook to assist with investigations, the use of metrics to measure the effectiveness of the SOC, the use of a SOC workflow management system and automation to improve SOC efficiency, and the concepts of an incident response plan.

IT professionals

Any learner interested in entering associate-level cybersecurity roles such as:

SOC cybersecurity analysts
Computer or network defense analysts
Computer network defense infrastructure support personnel
Future incident responders and SOC personnel
Cisco integrators or partners

To fully benefit from this course, you should first complete the following course or obtain the equivalent knowledge and skills:

Understanding Cisco Cybersecurity Fundamentals (SECFND)