Introduction to Security Operations Center (SOC)
As a TEHTRIS Cyberdefender this course gives you the fundamentals of Security Operations Centers (SOC). This course is the first step to the TEHTRIS SOC analyst certification.
Course curriculum
-
-
Objectives
-
-
-
Basics
-
What is a security operation center (SOC)
-
Why do we need a SOC
-
How to deploy a SOC
-
Quiz
-
-
-
Introduction
-
Network perimeter security
-
Host-based intrusion detection and prevention systems (HIDS/HIPS)
-
Web application firewall (WAF)
-
Endpoint detection and response (EDR)
-
Extended detection and response (XDR)
-
Web proxy
-
Vulnerability management process
-
Security information and event management (SIEM)
-
Security orchestration, automation and response (SOAR)
-
Malware analysis
-
Honeypots
-
Cloud access security brokers (CASB)
-
Cyber threat intelligence (CTI)
-
User and entity behavior analytics (UEBA)
-
Ticketing systems
-
Asset inventory
-
Attention to buzzwords
-
-
-
Organization chart and roles
-
Growth, skill development, and training plans
-
Challenges for SOC jobs
-
-
-
Policies, processes and procedures
-
Standard operations procedures (SOPs)
-
About this course
-
Who should attend:
-
• SOC analyst
• incident response team
• security professional who want to fill the gaps in their understanding of technical information security
• operations personnel who do not have security as their primary job function but need an understanding of security to be effective -
What you will learn:
• how compliance requirements and policies can empower your organization's security
• know and understand the principal tools a SOC is using
• why and how processes and procedures will leverage your SOC maturity
• hiring skilled SOC analysts is crucial
• awareness about the SOC alert fatigue problem