Course Description
OVERVIEW
The Certified SOC Analyst (CSA) certification programme is the first step towards working in a security operations centre (SOC). It is designed to help existing and prospective Tier I and Tier II SOC analysts master entry-level and intermediate-level operations.
CSA is a training and credentialing programme that assists candidates in acquiring trending and in-demand technical skills through teaching from some of the industry’s most experienced educators. The curriculum is designed to open up new employment prospects by combining vast, detailed knowledge with higher level competencies for dynamically contributing to a SOC team. It is a three-day intensive training that covers the principles of SOC operations before conveying knowledge of log management and correlation, SIEM implementation, advanced event detection, and incident response. Furthermore, the candidate will learn to manage various SOC processes and collaborate with CSIRT at the time of need.
Course Outline
- Module 01 – Security Operations and Management
- Module 02: Understanding Cyber Threats, IoCs, and Attack Methodology
- Module 03: Incidents, Events, and Logging
- Module 04: Incident Detection with Security Information and Event Management (SIEM)
- Module 05: Enhanced Incident Detection with Threat Intelligence
- Module 06: Incident Response
Requirements
- To apply for SOC Analyst Certification one year of work experience in the Network Admin/Security domain is compulsory. If the candidate attends official training this, experience isn’t required.
Target audiences
- L1/L2 SOC Analysts
- Network and Security Administrators, Network and Security Engineers, Network Defense Analyst, Network Defense Technicians, Network Security Specialist, Network Security Operator, and any security professional handling network security operations
- Cybersecurity Analyst
- Entry-level cybersecurity professionals
- Anyone who wants to become a SOC Analyst.