Profiteer nu van 20% korting voor het einde van Juni! Neem contact op.

IBM - Certified SOC Analyst

Looptijd

Looptijd:

Slechts 8 dagen

Methode

Methode:

Klas / Online / Hybride

Volgende datum

Volgende datum:

26/9/2022 (Maandag)

Overview

Achieve the IBM Certified SOC Analyst certification through this 8-day accelerated combined course. This programme includes the following courses:

  • CompTIA Cybersecurity Analyst CySA+
  • IBM's Security QRadar SIEM Administrator

Through CompTIA's CySA+, you'll learn best practices to secure and protect your business’ applications and systems by:

  • Configuring and using threat detection tools
  • Learning how to perform data analysis to identify vulnerabilities, threats and risks
  • Focusing on network behaviour – both internal and external threats

Through the IBM Security QRadar SIEM Administrator course, you’ll build knowledge on how to support IBM’s Security QRadar SIEM V7.3.3 by:

  • Implementing and managing a IBM Security QRadar SIEM V7.3.3 solution
  • Becoming familiar with the product’s functionality and security policies
  • Deploying, migrating and troubleshooting the IBM Security QRadar SIEM V7.3.3 software

At the end of your course you’ll sit exams CS0-002 and C1000-026, and get your IBM Certified SOC Analyst certification.


Authorised Partner of CompTIA


You’ll get access to official courseware and learn from certified instructors as Firebrand is an Authorised Partner of CompTIA.

Train through Firebrand’s Lecture | Lab | Review methodology and you’ll certify at twice the speed in a distraction-free environment.

Firebrand also offer the CompTIA Cybersecurity Analyst (CySA+) as an individual course and certification.


Audience


If you’re an analyst interested in building your technical knowledge and skills in CompTIA and IBM software, this course is ideal for you.

Zeven redenen waarom u met uw cursus voor Firebrand Training moet kiezen

  1. U zult in slechts 8 dagen gecertificeerd zijn. Met ons bent u in recordtijd getraind
  2. Onze cursus is all-inclusive. Een eenmalige contributie bekostigt alle cursusmaterialen, accommodaties en maaltijden.
  3. Slaag de eerste keer voor of volg de training nogmaals. Dit is onze garantie. Wij zijn er zeker van dat u de eerste keer zult slagen voor uw cursus. Mocht dit niet het geval zijn, dan kunt u binnen het jaar terugkomen en enkel voor de accommodatie en examens te betalen. De rest is gratis
  4. U zult meer leren. Een dag met een traditionele training aanbieder duurt over het algemeen van 9 uur 's ochtends tot 17 uur in de middag, met een lange lunchpauze. Met Firebrand Training kunt u rekenen op minstens 12 uur leren per dag met uw instructeur
  5. U zult snellerde theorie beheersen. De kans bestaat dat u een andere manier van leren heeft dan uw omgeving. Wij combineren visuele, auditieve en tastbare leerstijlen, dit zorgt voor een snellere en eenvoudigere manier van leren
  6. U zult studeren met de beste. We hebben het Q-For kwaliteit label, dat onze standaarden en professionaliteit in de training markt erkent. Naast het winnen van nog vele andere prijzen, hebben we inmiddels 124229 professionals getraind en gecertificeerd en we zijn partners met alle grote namen in deze tak van het bedrijfsleven
  7. U zult meer doen dan alleen de cursusstof bestuderen. We maken gebruik van laboratoria, case-studies en oefentests, om ervoor te zorgen dat u uw nieuwe kennis in uw werkomgeving kan toepassen. Onze instructeurs gebruiken demonstraties en hun eigen ervaringen om de dag interessant en boeiend te houden

Benefits

Curriculum


CompTIA CySa+ (Cybersecurity Analyst)


Section 1: Threat Management

  • Module 1: Given a scenario, apply environmental reconnaissance techniques using appropriate tools and processes
  • Module 2: Given a scenario, analyse the results of a network reconnaissance
  • Module 3: Given a network-based threat, implement or recommend the appropriate response and countermeasure
  • Module 4: Explain the purpose of practices used to secure a corporate environment

Section 2: Vulnerability Management

  • Module 1: Given a scenario, implement an information security vulnerability management process
  • Module 2: Given a scenario, analyse the output resulting from a vulnerability scan
  • Module 3: Compare and contrast common vulnerabilities found in the following targets

Section 3: Cyber Incident Response

  • Module 1: Given a scenario, distinguish threat data or behaviour to determine the impact of an incident
  • Module 2: Given a scenario, prepare a toolkit and use appropriate forensic tools during an investigation
  • Module 3: Explain the importance of communication during the incident response process
  • Module 4: Given a scenario, analyse common symptoms to select the best course of action to support incident response
  • Module 5: Summarise the incident recovery and post-incident response process

Section 4: Security Architecture and Tool Sets

  • Module 1: Explain the relationship between frameworks, common policies, controls, and procedures
  • Module 2: Given a scenario, use data to recommend remediation of security issues related to identity and access management
  • Module 3: Given a scenario, review security architecture and make recommendations to implement compensating controls
  • Module 4: Given a scenario, use application security best practices while participating in the Software Development Life Cycle (SDLC)
  • Module 5: Compare and contrast the general purpose and reasons for using various cybersecurity tools and technologies

IBM Security QRadar SIEM V7.3.3 Fundamental Administration


Section 1: Implementing

  • Module 1: Plan and design QRadar deployment
  • Module 2: Implement and install QRadar
  • Module 3: Add Managed Hosts

Section 2: Migrating and upgrading

  • Module 1: Plan QRadar upgrade and migration
  • Module 2: Review documentation and release notes
  • Module 3: Perform QRadar updates, patches and upgrades
  • Module 4: Perform migration (e.g., backup and restore, import and export content)

Section 3: Configuring and administering tasks

  • Module 1: Configure event flow sources and custom properties
  • Module 2: Maintain configuration and data backups
  • Module 3: Create and administer users, user roles, and security profiles
  • Module 4: Manage the license per allocation
  • Module 5: Create, review and modify rules, building blocks and reference sets
  • Module 6: Configure and manage retention policies (i.e., data and assets)
  • Module 7: Create and manage saved searches, index, global views, dashboards and reports
  • Module 8: Deploy and manage applications and content packages
  • Module 9: Configure global system notifications
  • Module 10: Configure and apply network hierarchy
  • Module 11: Configure and manage domain and tenants
  • Module 12: Use the asset database
  • Module 13: Schedule and run a VA scan

Section 4: Monitoring

  • Module 1: Monitor QRadar Notifications and error messages
  • Module 2: Review and interpret system monitoring dashboards
  • Module 3: Verify QRadar processes and services
  • Module 4: Monitor QRadar performance
  • Module 5: Use apps and tools for monitoring (e.g., QDI, assistant app, incident overview, DrQ)
  • Module 6: Check system maintenance and health of appliances
  • Module 7: Monitor offences and detect anomalies

Section 5: Troubleshooting

  • Module 1:  Demonstrate knowledge of key commands to interpret QRadar services and processes
  • Module 2: Explain error messages and notifications
  • Module 3: Interpret the basic logs (e.g., qradar.error, qradar.log)
  • Module 4: Use embedded troubleshooting tools and scripts

Exam Track

As part of your accelerated course, you’ll sit the following exams at the Firebrand Training centre, covered by your Certification Guarantee:


CompTIA CySa+ (Cybersecurity Analyst)

  • Exam code: CS0-002
  • Format: Multiple-choice & performance-based
  • Duration: 165 minutes
  • Passing score: 750 (on a scale of 100-900)

IBM Security QRadar SIEM V7.3.3 Fundamental Administration

  • Exam code: C1000-026
  • Duration: 90 minutes
  • Passing score: 40/60 (66.7%)
  • Domains:
    1. Implementing (8%)
    2. Migrating and upgrading (12%)
    3. Configuring and administering tasks (42%)
    4. Monitoring (25%0
    5. Troubleshooting (13%)

What's Included

Prerequisites

Before attending this accelerated course, CompTIA CySa+ and IBM Security QRadar SIEM V7.3.3 Fundamental Administration have individual prerequisites you'll need in order to get certified:


CompTIA CySa+ (Cybersecurity Analyst)

  • Network+, Security+ or equivalent knowledge
  • Minimum of 3-4 years of information security or related experience

IBM QRadar SIEM V7.3.3 Fundamental Administration

You'll need basic knowledge of:

  • RedHat
  • Networking
  • Basic Query Language
  • Regular Expressions
  • System architecture design
  • Security platform

Weet je niet zeker of je aan de vereisten voldoet? Maak je geen zorgen. Jouw trainingsadviseur bespreekt jouw achtergrond met je om te begrijpen of deze cursus geschikt is voor je.

Beoordelingen

Wereldwijd heeft Firebrand in haar 10-jarig bestaan al 124229 studenten opgeleid! We hebben ze allemaal gevraagd onze versnelde opleidingen te evalueren. De laatste keer dat we onze resultaten analyseerden, bleek 96.62% ons te beoordelen als 'boven verwachting'


"Quick a lot of information, very nice outside of the day to day environment. The focus is brilliant."
DV, vandenAkker ict. (12/10/2021 (Dinsdag) t/m 15/10/2021 (Vrijdag))

"Very intense and although the amount of knowledge is high, the discussions are very valuable."
Anonymous. (12/10/2021 (Dinsdag) t/m 15/10/2021 (Vrijdag))

"Firebrand training was really good. The instructor was especially engaging and provided relevant examples."
Anonymous. (12/10/2021 (Dinsdag) t/m 15/10/2021 (Vrijdag))

"Quick dive in AWS ! Loved it!"
Daniel Penninck, smals. (26/10/2020 (Maandag) t/m 29/10/2020 (Donderdag))

"I can say that I definitely improved and expanded my AWS knowledge with this course. Loved the discussions and the depth, as well as the focus on achieving the Associate Certification by taking a look at real exam questions."
A.S. (26/10/2020 (Maandag) t/m 29/10/2020 (Donderdag))

Cursusdata

Start datum

Eind datum

Status

Locatie

Nu boeken

23/5/2022 (Maandag)

30/5/2022 (Maandag)

Beëindigde cursus - Geef feedback

-

 

26/9/2022 (Maandag)

3/10/2022 (Maandag)

Wachtlijst

Landelijk

 

7/11/2022 (Maandag)

14/11/2022 (Maandag)

Beperkte beschikbaarheid

Landelijk

 

19/12/2022 (Maandag)

26/12/2022 (Maandag)

Open

Landelijk

 

30/1/2023 (Maandag)

6/2/2023 (Maandag)

Open

Landelijk

 

13/3/2023 (Maandag)

20/3/2023 (Maandag)

Open

Landelijk

 

Nieuwste beoordelingen van onze studenten