EC-Council - Certified SOC Analyst (CSA)

Dauer

Dauer:

Nur 2 Tage

Methode

Methode:

Klassenraum / Online / Hybrid

nächster Termin

nächster Termin:

27.9.2021 (Montag)

Overview

On this accelerated EC-Council Certified SOC Analyst (CSA) course, you'll learn to identify, monitor and analyse cyber-attacks, and use the information to quickly respond to security incidents.

In just 2 days, you'll build the skill-set you need to work effectively within a security operations centre (SOC). You'll also learn about security information and event management (SIEM), deployment and architecture.

At the end of your course, you'll sit Exam 312-39 and return to the office an EC-Council Certified SOC Analyst (CSA).

On this accelerated course, you'll learn how to:

  • Recognise attacker tools, behaviours, tools and procedures
  • Use the Centralised Log Management (CLM) process
  • Make use of constantly changing threat information

If you're an aspiring SOC analyst or already are one at a Tier 1 and Tier 2 level, this course is ideal for you.

This course is also designed for security professionals who handle and manage network security operations, like network and security administrators or engineers, or network security operators.

You’ll train at twice the speed with Firebrand's unique Lecture | Lab | Review methodology. Learn in a distraction-free environment and become an EC-Council Certified SOC Analyst (CSA) in just 2 days.

Benefits

In einem Firebrand Intensiv-Training profitieren Sie von folgenden Vorteilen:

  • Zwei Optionen - Präsenz- oder Onlinetraining
  • Ablenkungsfreie Lernumgebung
  • Eigene Trainings- und Prüfungszentren (Pearson VUE Select Partner)
  • Effektives Training mit praktischen Übungseinheiten und intensiver Betreuung durch unsere Trainer
  • Umfassendes Leistungspaket mit allem, was Sie benötigen, um Ihre Zertifizierung zu erhalten, inklusive unserer Firebrand Leistungsgarantie.

Curriculum

Module 1: Security operations and management

  • Understand the SOC Fundamentals
  • Discuss the components of SOC: People, processes and technology
  • Understand the implementation of SOC

Module 2: Understanding cyber threats, IoCs, and attack methodology

  • 2.1 Describe the term cyber threats and attacks
  • 2.2 Understand the Network Level attacks
  • 2.3 Understand the Host Level attacks
  • 2.4 Understand the Application Level attacks
  • 2.5 Understand the Indicators of Compromise (IoCs)
  • 2.6 Discuss the attacker’s Hacking Methodology

Module 3: Incidents, events and logging

  • 3.1 Understand the fundamentals of incidents, events, and logging
  • 3.2 Explain the concepts of local logging
  • 3.3 Explain the concepts of centralised logging

Module 4: Incident detection with Security Information and Event Management (SIEM)

  • 4.1 Understand the basic concepts of Security Information and Event Management (SIEM)
  • 4.2 Discuss the different SIEM Solutions
  • 4.3 Understand the SIEM Deployment
  • 4.4 Learn different use case examples for Application Level Incident Detection
  • 4.5 Learn different use case examples for Insider Incident Detection
  • 4.6 Learn different use case examples for Network Level Incident Detection
  • 4.7 Learn different use case examples for Host Level Incident Detection
  • 4.8 Learn different use case examples for Compliance
  • 4.9 Understand the concept of handling alert triaging and analysis

Module 5: Enhanced incident detection with threat intelligence

  • 5.1 Learn fundamental concepts on threat intelligence
  • 5.2 Learn different types of threat intelligence
  • 5.3 Understand how threat intelligence strategy is developed
  • 5.4 Learn different threat intelligence sources from which intelligence can be obtained
  • 5.5 Learn different Threat Intelligence Platform (TIP)
  • 5.6 Understand the need of threat intelligence-driven SOC

Module 6: Incident response

  • 6.1 Understand the fundamental concepts of incident response
  • 6.2 Learn various phases in Incident Response Process
  • 6.3 Learn how to respond to Network Security Incidents
  • 6.4 Learn how to respond to Application Security Incidents
  • 6.5 Learn how to respond to Email Security Incidents
  • 6.6 Learn how to respond to Insider Incidents
  • 6.7 Learn how to respond to Malware Incidents

Exam Track

You'll sit the following exam at the Firebrand Training centre, covered by your Certification Guarantee:

  • EC-Council Certified SOC Analyst (CSA) - Exam 312-39
    • Exam format: Multiple-choice
    • Exam duration: 120 minutes
    • Number of questions: 100
    • Passing score: 70%
    • Language: English
    • Domains:
      • 1: Security operations and management (5%)
      • 2: Understanding cyber threats, IoCs, and attack methodology (11%)
      • 3: Incidents, events and logging (21%)
      • 4: Incident detection with Security Information and Event Management (SIEM) (26%)
      • 5: Enhanced incident detection with threat intelligence (8%)
      • 6: Incident response (29%)

What's Included

Prerequisites

Before attending this accelerated course, you should have 1 year of work experience in network admin or security.

Sind Sie sich unsicher, ob Sie die Voraussetzungen erfüllen? Wir besprechen gerne mit Ihnen Ihren technischen Hintergrund, Erfahrung und Qualifikation, um herauszufinden, ob dieser Intensivkurs der richtige für Sie ist.

Erfahrungsberichte

Bereits 106662 Kursteilnehmer haben seit 2001 erfolgreich einen Firebrand-Kurs absolviert. Unsere aktuellen Kundenbefragungen ergeben: Bei 96.66% unserer Teilnehmer wurde die Erwartungshaltung durch Firebrand übertroffen!


"Kompetenter und sympathischer Kursleiter. Inhaltlich sehr komplex und komprimiert. Selfstudy im Anschluss notwendig um nicht auf der Strecke zu bleiben. Für den Online Kurs waren Registrierungen/Konten erstellen nötig."
Jürgen Wagner, Verband der Vereine Creditreform e.V.. (23.11.2020 (Montag) bis 27.11.2020 (Freitag))

"Intensivkurs, in welchem die Themen optimal vermittelt und anhand praktischer Übungen und Beispiele vertieft werden."
Sebastian Schwegler, Exxta AG. (16.3.2020 (Montag) bis 20.3.2020 (Freitag))

"Druckbetankung mit Erfolg."
Anonym (2.12.2019 (Montag) bis 6.12.2019 (Freitag))

"Der Kurs war intensiv, kompakt und erfolgreich. "
Markus Lawrenz. (3.6.2019 (Montag) bis 7.6.2019 (Freitag))

"Die komprimierten Informationen in kurzer Zeit haben mich in Höchstform gebracht - ein Bootcamp wie ich es mag."
J.T. . (3.6.2019 (Montag) bis 7.6.2019 (Freitag))

Kurstermine

Start

Ende

Verfügbarkeit

Standort

Anmelden

24.5.2021 (Montag)

25.5.2021 (Dienstag)

Kurs gelaufen - Hinterlasse Kommentar

-

 

27.9.2021 (Montag)

28.9.2021 (Dienstag)

Warteliste

Überregional

 

8.11.2021 (Montag)

9.11.2021 (Dienstag)

Einige Plätze frei

Überregional

 

20.12.2021 (Montag)

21.12.2021 (Dienstag)

Einige Plätze frei

Überregional

 

31.1.2022 (Montag)

1.2.2022 (Dienstag)

Einige Plätze frei

Überregional

 

14.3.2022 (Montag)

15.3.2022 (Dienstag)

Einige Plätze frei

Überregional

 

Neueste Rezensionen von unseren Kursteilnehmern