Understanding Cisco Cybersecurity Operations Fundamentals v1.0

This course teaches you security concepts, common network and application operations and attacks, and the types of data needed to investigate security incidents. This course teaches you how to monitor alerts and breaches, and how to understand and follow established procedures for response to alerts converted to incidents. Through a combination of lecture, hands-on labs, and self-study, you will learn the essential skills, concepts, and technologies to be a contributing member of a cybersecurity operations center (SOC) including understanding the IT infrastructure, operations, and vulnerabilities. This course helps you prepare for the Cisco Certified CyberOps Associate certification and the role of a Junior or Entry-level cybersecurity operations analyst in a SOC.

Course syllabus:

  1. Defining the Security Operations Center

  2. Understanding Network Infrastructure and Network Security Monitoring Tools

  3. Exploring Data Type Categories

  4. Understanding Basic Cryptography Concepts

  5. Understanding Common TCP/IP Attacks

  6. Understanding Endpoint Security Technologies

  7. Understanding Incident Analysis in a Threat-Centric SOC

  8. Identifying Resources for Hunting Cyber Threats

  9. Understanding Event Correlation and Normalization

  10. Identifying Common Attack Vectors

  11. Identifying Malicious Activity

  12. Identifying Patterns of Suspicious Behavior

  13. Conducting Security Incident Investigations

  14. Using a Playbook Model to Organize Security Monitoring

  15. Understanding SOC Metrics

  16. Understanding SOC Workflow and Automation

  17. Describing Incident Response

  18. Understanding the Use of VERIS

  19. Understanding Windows Operating System Basics

  20. Understanding Linux Operating System Basics