EC-Council - Certified SOC Analyst (CSA)

Varighed

Varighed:

Kun 2 dage

Metode

Metode:

Klasseværelse / Online / Hybrid

Næste dato

Næste dato:

27/9/2021 (Mandag)

Overview

On this accelerated EC-Council Certified SOC Analyst (CSA) course, you'll learn to identify, monitor and analyse cyber-attacks, and use the information to quickly respond to security incidents.

In just 2 days, you'll build the skill-set you need to work effectively within a security operations centre (SOC). You'll also learn about security information and event management (SIEM), deployment and architecture.

At the end of your course, you'll sit Exam 312-39 and return to the office an EC-Council Certified SOC Analyst (CSA).

On this accelerated course, you'll learn how to:

  • Recognise attacker tools, behaviours, tools and procedures
  • Use the Centralised Log Management (CLM) process
  • Make use of constantly changing threat information

If you're an aspiring SOC analyst or already are one at a Tier 1 and Tier 2 level, this course is ideal for you.

This course is also designed for security professionals who handle and manage network security operations, like network and security administrators or engineers, or network security operators.

You’ll train at twice the speed with Firebrand's unique Lecture | Lab | Review methodology. Learn in a distraction-free environment and become an EC-Council Certified SOC Analyst (CSA) in just 2 days.

Her er 4 gode grunde til at du skal tage EC-Council CSA hos Firebrand:

  1. Du bliver EC-Council CSA uddannet og certificeret hurtigere. Du lærer mere på vores 6 dages accelererede kursus og får mindst 12 timers daglig uddannelse i et distraktionsfrit miljø.
  2. Dit EC-Council CSA kursus er alt-inklusiv. Du får en gennemskuelig pris, der dækker alle kursusmaterialer, eksamen, overnatning og forplejning. Du skal ikke tænke på andet end at lære.
  3. Bestå EC-Council CSA den første gang eller kom tilbage, gratis. Din instruktør er ekspert, og træner dig ud fra accelererede metoder, så du lærer hurtigere og har de bedste muligheder for at bestå eksamen første gang. Men hvis du mod forventning ikke består, er du dækket af vores Certificeringsgaranti.
  4. Tag EC-Council CSA hos en prisvindende uddannelsesleverandør. Vi har vundet adskillige udmærkelser heriblandt Microsofts "Årets Learning Partner" hele fem gange og to Børsen Gazelle priser. Firebrand er din hurtigste vej til uddannelse, og vi har sparet 70,000 deltagere for mere end en million spildte timer siden 2001.

Benefits

Curriculum

Module 1: Security operations and management

  • Understand the SOC Fundamentals
  • Discuss the components of SOC: People, processes and technology
  • Understand the implementation of SOC

Module 2: Understanding cyber threats, IoCs, and attack methodology

  • 2.1 Describe the term cyber threats and attacks
  • 2.2 Understand the Network Level attacks
  • 2.3 Understand the Host Level attacks
  • 2.4 Understand the Application Level attacks
  • 2.5 Understand the Indicators of Compromise (IoCs)
  • 2.6 Discuss the attacker’s Hacking Methodology

Module 3: Incidents, events and logging

  • 3.1 Understand the fundamentals of incidents, events, and logging
  • 3.2 Explain the concepts of local logging
  • 3.3 Explain the concepts of centralised logging

Module 4: Incident detection with Security Information and Event Management (SIEM)

  • 4.1 Understand the basic concepts of Security Information and Event Management (SIEM)
  • 4.2 Discuss the different SIEM Solutions
  • 4.3 Understand the SIEM Deployment
  • 4.4 Learn different use case examples for Application Level Incident Detection
  • 4.5 Learn different use case examples for Insider Incident Detection
  • 4.6 Learn different use case examples for Network Level Incident Detection
  • 4.7 Learn different use case examples for Host Level Incident Detection
  • 4.8 Learn different use case examples for Compliance
  • 4.9 Understand the concept of handling alert triaging and analysis

Module 5: Enhanced incident detection with threat intelligence

  • 5.1 Learn fundamental concepts on threat intelligence
  • 5.2 Learn different types of threat intelligence
  • 5.3 Understand how threat intelligence strategy is developed
  • 5.4 Learn different threat intelligence sources from which intelligence can be obtained
  • 5.5 Learn different Threat Intelligence Platform (TIP)
  • 5.6 Understand the need of threat intelligence-driven SOC

Module 6: Incident response

  • 6.1 Understand the fundamental concepts of incident response
  • 6.2 Learn various phases in Incident Response Process
  • 6.3 Learn how to respond to Network Security Incidents
  • 6.4 Learn how to respond to Application Security Incidents
  • 6.5 Learn how to respond to Email Security Incidents
  • 6.6 Learn how to respond to Insider Incidents
  • 6.7 Learn how to respond to Malware Incidents

Exam Track

You'll sit the following exam at the Firebrand Training centre, covered by your Certification Guarantee:

  • EC-Council Certified SOC Analyst (CSA) - Exam 312-39
    • Exam format: Multiple-choice
    • Exam duration: 120 minutes
    • Number of questions: 100
    • Passing score: 70%
    • Language: English
    • Domains:
      • 1: Security operations and management (5%)
      • 2: Understanding cyber threats, IoCs, and attack methodology (11%)
      • 3: Incidents, events and logging (21%)
      • 4: Incident detection with Security Information and Event Management (SIEM) (26%)
      • 5: Enhanced incident detection with threat intelligence (8%)
      • 6: Incident response (29%)

What's Included

Det hele er inkluderet! Du får en alt-inklusiv kursuspakke, som er målrettet til dine behov. Vi tager os af enhver detalje, så det eneste du skal fokusere på er dine lærings- og certificeringsmål.

  • Transport til/fra specifikke afhentningssteder
  • Overnatninger, samtlige måltider samt adgang til forfriskninger, snacks, kaffe og the.
  • Intensiv Hands-on uddannelse med vores unikke (Lecture | Lab | Review)TM metode
  • Omfattende kursusmaterialer og labmanualer
  • Et helt igennem instruktørstyret program
  • 24 timers adgang til både undervisningslokale og instruktøren
  • Samtlige måltider samt adgang til forfriskninger, snacks, kaffe og the.
  • Certificeringsgaranti

Prerequisites

Before attending this accelerated course, you should have 1 year of work experience in network admin or security.

Er du klar til dit Firebrand Kursus?

Vi interviewer alle potentielle deltagere angående deres baggrund, uddannelser, certificeringer og personlig indstilling. Hvis du kommer igennem denne screeningsprocedure, betyder det, at du har rigtig gode chancer for at bestå.

Firebrand Training tilbyder et ambitiøst uddannelsesmiljø, som forudsætter at du dedikerer dig til kurset. Ovenstående forkundskaber er vejledende; mange deltagere med mindre erfaring, men med en anden baggrund eller færdigheder, har haft succes med accelereret uddannelse hos Firebrand Training.

Hvis du funderer på hvorvidt du opfylder de anbefalede forkundskaber, er du meget velkommen til at ringe til os på 78 79 16 53 og tale med en af vores uddannelsesrådgivere, som kan hjælpe dig.

Kundereferencer

Vi har uddannet over 106.662 personer i løbet af 12 år. Vi har bedt dem alle om at bedømme vores accelererede kurser. Aktuelt har 96,66% sagt, at Firebrand oversteg deres forventninger:

"Great experience. Knowledgeable trainer who made the session very collaborative."
Peter Stevens, Royal London. (26/5/2021 (Onsdag) til 28/5/2021 (Fredag))

"Firebrand has been an excellent experience that has bolstered my knowledge of security greatly. The course volume and length of the days are quite the undertaking but the teaching style makes it work with an excellent pay off from sticking through it."
D.B.. (2/4/2021 (Fredag) til 6/4/2021 (Tirsdag))

"The material has been presented professionaly. Breaks has been given quite regularly. The instructor has been very helpful"
Nikolina Ilcheva, NIKOLINA ILCHEVA. (2/4/2021 (Fredag) til 6/4/2021 (Tirsdag))

"Wow! What an amazing course. I have gained a massive amount of knowledge over the last 5 days. And the tutor made it more interesting than I even imagined :- I would recommend this training to anyone who wants to get immersed in the world of Ethical Hacking. Thank you"
Daniel Cieslar. (1/2/2021 (Mandag) til 5/2/2021 (Fredag))

"Experience from the outset was excellent. I was advised on the best course of action which really helped me decide the most appropriate course. The instructor delivered the course SUPERBLY. Wow! What a body of knowledge he possesses. First class experience and i can highly recommend this course!!"
Alan Gardner, Darkskope Corporation. (8/2/2021 (Mandag) til 10/2/2021 (Onsdag))

Kursusdatoer

Starter

Slutter

Tilgængelighed

Sted

Tilmelding

24/5/2021 (Mandag)

25/5/2021 (Tirsdag)

Afsluttet - Giv feedback

-

 

27/9/2021 (Mandag)

28/9/2021 (Tirsdag)

Venteliste

Landsdækkende

 

8/11/2021 (Mandag)

9/11/2021 (Tirsdag)

Begrænsede pladser

Landsdækkende

 

20/12/2021 (Mandag)

21/12/2021 (Tirsdag)

Tilgængelige pladser

Landsdækkende

 

31/1/2022 (Mandag)

1/2/2022 (Tirsdag)

Tilgængelige pladser

Landsdækkende

 

14/3/2022 (Mandag)

15/3/2022 (Tirsdag)

Tilgængelige pladser

Landsdækkende

 

Seneste anmeldelser fra vores studerende