This course allows learners to understand how a Security Operations Center (SOC) functions and the introductory-level skills and knowledge needed in this environment. It focuses on the introductory-level skills needed for a SOC Analyst at the associate level. This course demonstrates specifically, how to understand basic threat analysis, event correlation, identify malicious activity, and how to use a playbook for incident response.
It is strongly recommended, but not required, that students have the knowledge and skills equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1). Students should also have working knowledge of the Windows operating system and of Cisco IOS networking and concepts. Understanding Cisco Cybersecurity Fundamentals (SECFND) is also beneficial.
5 Days/Lecture & Lab
This course is designed for security operations center security analysts, computer network defense analysts, computer network defense infrastructure support personnel, future incident responders and security operations center (SOC) personnel, students beginning a career and entering the cybersecurity fields, IT personnel looking to learn more about the area of cybersecurity operations, and Cisco channel partners.
- SOC Overview
- Security Incident Investigations
- SOC Operations