Implementing Cisco Cybersecurity Operations (SECOPS)
Overview
The Implementing Cisco Cybersecurity Operations (SECOPS) v1.0 course gives you foundation-level knowledge of security incident analysis techniques used in a Security Operations Center (SOC). You will learn how to identify and analyze threats and malicious activity, correlate events, conduct security investigations, use incident playbooks, and learn SOC operations and procedures. This is the second of two courses that prepare you for the Cisco® CCNA® Cyber Ops certification. This certification validates your knowledge and hands-on skills to help handle cybersecurity events as an associate-level member of an SOC team. Prerequisites
- Skills and knowledge equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1)
- Skills and knowledge equivalent to those learned in Security Certification Fundamentals (SECFND)
- Working knowledge of the Windows operating system
- Working knowledge of Cisco IOS networking and concepts
Course Content/Exam(s)
| Course Code | Description | Exam Code | Duration |
|---|---|---|---|
| SECOPS v1.0 | SECOPS_1.0_.pdf |
Course Benefits
After taking this course, you should be able to:- Describe the three common SOC types, tools used by SOC analysts, job roles within the SOC, and incident analysis within a threat-centric SOC
- Explain security incident investigations, including event correlation and normalization and common attack vectors, and be able to identify malicious and suspicious activities
- Explain the use of a SOC playbook to assist with investigations, the use of metrics to measure the effectiveness of the SOC, the use of a SOC workflow management system and automation to improve SOC efficiency, and the concepts of an incident response plan