Implementing Cisco Cybersecurity Operations (SECOPS)

Seminarinformationen

Seminar - Ziel

Today's organizations are challenged with rapidly detecting cybersecurity breaches and effectively responding to security incidents. Teams of people in Security Operations Centers (SOC’s) keep a vigilant eye on security systems, protecting their organizations by detecting and responding to cybersecurity threats. CCNA Cyber Ops prepares candidates to begin a career working with associate-level cybersecurity analysts within security operations centers.

This course allows learners to understand how a Security Operations Center (SOC) functions and the introductory-level skills and knowledge needed in this environment. It focuses on the introductory-level skills needed for a SOC Analyst at the associate level. Specifically, understanding basic threat analysis, event correlation, identifying malicious activity, and how to use a playbook for incident response.

Upon completion of this course, you will be able to:

  • Define a SOC and the various job roles in a SOC
  • Understand SOC infrastructure tools and systems
  • Learn basic incident analysis for a threat centric SOC
  • Explore resources available to assist with an investigation
  • Explain basic event correlation and normalization
  • Describe common attack vectors
  • Learn how to identifying malicious activity
  • Understand the concept of a playbook
  • Describe and explain an incident respond handbook
  • Define types of SOC Metrics
  • Understand SOC Workflow Management system and automation

Teilnehmer - Zielgruppe

  • Security Operations Center – Security Analyst
  • Computer/Network Defense Analysts
  • Computer Network Defense Infrastructure Support Personnel
  • Future Incident Responders and Security Operations Center (SOC) personnel.
  • Students beginning a career, entering the cybersecurity field.
  • Cisco Channel Partners

Kurs - Voraussetzungen

To fully benefit from this course, you should first complete the following course or obtain the equivalent knowledge and skills:

  • Understanding Cisco Cybersecurity Fundamentals (SECFND)

Seminardauer

  • 5 Tage
  • 09:00 Uhr bis 17:00 Uhr

Schulungsunterlagen

  • nach Absprache

Seminar-Inhalt / Agenda

Module 1: SOC Overview

  • Lesson 1: Defining the Security Operations Center
  • Lesson 2: Understanding NSM Tools and Data
  • Lesson 3: Understanding Incident Analysis in a Threat-Centric SOC
  • Lesson 4: Identifying Resources for Hunting Cyber Threats

Module 2: Security Incident Investigations

  • Lesson 1: Understanding Event Correlation and Normalization
  • Lesson 2: Identifying Common Attack Vectors
  • Lesson 3: Identifying Malicious Activity
  • Lesson 4: Identifying Patterns of Suspicious Behavior
  • Lesson 5: Conducting Security Incident Investigations

Module 3: SOC Operations

  • Lesson 1: Describing the SOC Playbook
  • Lesson 2: Understanding the SOC Metrics
  • Lesson 3: Understanding the SOC WMS and Automation
  • Lesson 4: Describing the Incident Response Plan
  • Lesson 5: Appendix A—Describing the Computer Security Incident Response Team
  • Lesson 6: Appendix B—Understanding the use of VERIS
Tags: Cisco

Weitere Schulungen zu Thema Cisco

Cisco Digital Network Architecture Implementation Workshop (DNAIW)

- u.a. in Nürnberg, Berlin, Stuttgart, München, Köln

After completing this course you will be able to: describe the vision and the strategy as well as the general concepts and components of the Digital Network Architecture solution, describe and realize the network automation with Cisco DNA Center and the integrated applications ...

Cisco Digital Network Architecture Implementation Essentials (DNAIE)

- u.a. in Nürnberg, Berlin, Stuttgart, München, Köln

Course Objectives Upon completion of this course, you will be able to: Identify the Digital Network Architecture solution by describing the vision, strategy, general concepts and components of it, Implement network automation using Cisco APIC-EM and the built-in applications ...

Implementing Cisco SD-WAN Solutions (SDWAN300)

- u.a. in Frankfurt am Main, Hamburg, Zürich, Dresden, Virtual Classroom

This course will help you learn to use Cisco SD-WAN to: Establish a transport-independent WAN for lower cost and higher diversity, Meet Service-Level Agreements (SLAs) for business-critical and real-time applications, Provide end-to-end segmentation for protecting critical ...

Implementing Cisco MPLS (MPLS)

- u.a. in Hamburg, Köln, Paderborn, Essen, Virtual Classroom

Learners will gain design, implementation, and verification skills for a MPLS VPN domain capable of multiple customer sites with managed central services and Internet access. Upon completing this course, the learner will be able to meet these overall objectives: Describe the ...