|
Implementing Cisco Cybersecurity Operations
|
實現Cisco網路安全維運
課程代碼
SECOPS
課程天數
5 天
課程概要
本課程協助學員了解安全運營中心(SOC)裡實用的安全事件分析入門級技能和知識。您將學習如何識別和分析威脅與惡意活動、關聯事件、進行安全調查、使用事件手冊以及學習SOC操作和流程。
本課程為準備 CCNA®Cyber Ops 認證的兩門課程中之第二門建議課程。
本課程為準備 CCNA®Cyber Ops 認證的兩門課程中之第二門建議課程。
學習目標和取得技能
完成本課程後,您將能夠:
- Learn the fundamental skills that a cybersecurity analyst in a security operations center uses, including threat analysis, event correlation, identifying malicious activity, and how to use a playbook for incident response
- Prepare for the Cisco CCNA Cyber Ops certification with hands-on practice using real-life security analysis tools, such as those found in a Linux distribution
- Qualify for entry-level job roles in the high-demand area of cybersecurity
教學方式
CISCO認證講師指導
教材與實驗
CISCO原廠教材
課程適合對象
IT professionals and any learner interested in entering associate-level cybersecurity roles such as:
- SOC cybersecurity analysts
- Computer or network defense analysts
- Computer network defense infrastructure support personnel
- Future incident responders and SOC personnel
- Cisco integrators or partners
前備知識
建議學生具備以下知識和技能:
- 曾研習 Understanding Cisco Cybersecurity Fundamentals (SECFND) 課程或同級知識
課程大綱
1. SOC Overview
- Defining the Security Operations Center
- Understanding NSM Tools and Data
- Understanding Incident Analysis in a Threat-Centric SOC
- Identifying Resources for Hunting Cyber Threats
2. Security Incident Investigations
- Understanding Event Correlation and Normalization
- Identifying Common Attack Vectors
- Identifying Malicious Activity
- Identifying Patterns of Suspicious Behavior
- Conducting Security Incident Investigations
3. SOC Operations
- Describing the SOC Playbook
- Understanding the SOC Metrics
- Understanding the SOC WMS and Automation
- Describing the Incident Response Plan
- Appendix A - Describing the Computer Security Incident Response Team
- Appendix B - Understanding the use of VERIS
推薦課程
