Security Operations Centre (SOC) Analyst Foundation

4 Day Course
Hands On
Code QASOCFOU

This course has been superseded by the EC-Council Certified SOC Analyst course.

Modules

Hide all

Module 1 - Security Management (6 topics)

  • What is Security Operations
  • Finding the sweet spot
  • Security and Control
  • Security Goals
  • Reliability vs Security
  • Typical Security Flaws

Module 2 - Incident Response & Continuity Management (3 topics)

  • Incident Response vs Business Continuity
  • Incident Response Plans
  • Business Continuity Plans

Module 3 - Security Education (1 topic)

  • Implementing Security Programmes

Module 4 - Security Information Event Management (6 topics)

  • SIEM Processes & Architecture
  • SIEM Features & Functions
  • Security Auditing
  • Event Definition
  • Audit Logs - What to collect from Where
  • Data Analysis

Module 5 - Vulnerability Management (3 topics)

  • Vulnerability Management Process
  • Vulnerability Scanning
  • Remediation & Re-scanning

Module 6 - Threat Detection (7 topics)

  • Intruder Behaviour
  • IDS Systems
  • Anomaly Detection
  • HIDS & NIDS
  • Open Source IDS
  • Honeypots
  • Advanced Threats

Module 7 - Security Assessments (9 topics)

  • Penetration Testing
  • Red Teams
  • Scanning (NMap)
  • Firewall & IDS Evasion
  • Kali Linux
  • Metasploit
  • Meterpreter
  • Hydra
  • Social Engineering Toolkit

Module 8 - Simulated Attack - Defend - Attack (1 topic)

  • Offensive Defence Tradecracft

Prerequisites

There are no specific prerequisites for this course, however, participants are expected to have a general understanding of cyber threats and risk management. The course is designed for individuals responsible for defending organisations from cyber attacks.

Course PDF

Print

Sections