fbpx
E-learning hossza:
E-learning nyelve:
24 tanóra
Angol
E-learning díja:
279 500 Ft + Áfa

The Certified SOC Analyst (CSA) program is the first step to joining a security operations center (SOC). It is engineered for current and aspiring Tier I and Tier II SOC analysts to achieve proficiency in performing entry-level and intermediate-level operations.

CSA is a training and credentialing program that helps the candidate acquire trending and in-demand technical skills through instruction by some of the most experienced trainers in the industry. The program focuses on creating new career opportunities through extensive, meticulous knowledge with enhanced level capabilities for dynamically contributing to a SOC team. Being an intense 3-day program, it thoroughly covers the fundamentals of SOC operations, before relaying the knowledge of log management and correlation, SIEM deployment, advanced incident detection, and incident response. Additionally, the candidate will learn to manage various SOC processes and collaborate with CSIRT at the time of need. 

Target Audience

  • SOC Analysts (Tier I and Tier II)
  • Network and Security Administrators, Network and Security Engineers, Network Defense Analyst, Network Defense Technicians, Network Security Specialist, Network Security Operator, and any security professional handling network security operations
  • Cybersecurity Analyst
  • Entry-level cybersecurity professionals
  • Anyone who wants to become a SOC Analyst.

As the security landscape is expanding, a SOC team offers high-quality IT-security services to detect potential cyber threats/attacks actively and quickly respond to security incidents. Organizations need skilled SOC Analysts who can serve as the front-line defenders, warning other professionals of emerging and present cyber threats.
The lab-intensive SOC Analyst training program emphasizes the holistic approach to deliver elementary as well as advanced knowledge of how to identify and validate intrusion attempts. Through this, the candidate will learn to use SIEM solutions and predictive capabilities using threat intelligence. The program also introduces the practical aspect of SIEM using advanced and the most frequently used tools. The candidate will learn to perform enhanced threat detection using the predictive capabilities of Threat Intelligence.
Recent years have witnessed the evolution of cyber risks, creating an unsafe environment for the players of various sectors.
To handle these sophisticated threats, enterprises need advanced cybersecurity solutions along with traditional methods of defense. Practicing good cybersecurity hygiene and implementing an appropriate line of defense, and incorporating a security operations center (SOC) has become reasonable solutions. The team pursues twenty-four-hour and “follow-the-sun” coverage for performing security monitoring, security incident management, vulnerability management, security device management, and network flow monitoring.
A SOC Analyst continuously monitors and detects potential threats, triages the alerts, and appropriately escalates them. Without a SOC analyst, processes such as monitoring, detection, analysis, and triaging will lose their effectiveness, ultimately negatively affecting the organization.

 

8 Critical Components of CSA

1. 100% Compliance to NICE 2.0 Framework
2. Emphasizes on End-to-End SOC workflow
3. Learn Incident Detection with SIEM
4. Enhanced Incident Detection with Threat Intelligence
5. Elaborate Understanding of SIEM Deployment
6. Promotes Hands-On Learning
7. Lab Environment Simulates a Real-time Environment
8. Learn More with Additional Reference Material


Learning Objectives of CSA

• Gain Knowledge of SOC processes, procedures, technologies, and workflows.
• Gain a basic understanding and in-depth knowledge of security threats, attacks, vulnerabilities, attacker’s behaviors, cyber killchain, etc.
• Able to recognize attacker tools, tactics, and procedures to identify indicators of compromise (IOCs) that can be utilized during active and future investigations.
• Able to monitor and analyze logs and alerts from a variety of different technologies across multiple platforms (IDS/IPS, end-point protection, servers, and workstations).
• Gain knowledge of the Centralized Log Management (CLM) process.
• Able to perform Security events and log collection, monitoring, and analysis.
• Gain experience and extensive knowledge of Security Information and Event Management.
• Gain knowledge of administering SIEM solutions (Splunk/AlienVault/OSSIM/ELK).
• Understand the architecture, implementation and fine-tuning of SIEM solutions (Splunk/AlienVault/OSSIM/ELK).
• Gain hands-on experience in SIEM use case development process.
• Able to develop threat cases (correlation rules), create reports, etc.
• Learn use cases that are widely used across the SIEM deployment.
• Plan, organize, and perform threat monitoring and analysis in the enterprise.
• Able to monitor emerging threat patterns and perform security threat analysis.
• Gain hands-on experience in the alert triaging process.
• Able to escalate incidents to appropriate teams for additional assistance.
• Able to use a Service Desk ticketing system.
• Able to prepare briefings and reports of analysis methodology and results.
• Gain knowledge of integrating threat intelligence into SIEM for enhanced incident detection and response.
• Able to make use of varied, disparate, constantly changing threat information.
• Gain knowledge of Incident Response Process.
• Gain understating of SOC and IRT collaboration for better incident response.

Certified SOC Analyst Exam Details

The CSA exam is designed to test and validate a candidate’s comprehensive understanding of the job tasks required as a SOC analyst. Thereby, validating their comprehensive understanding of a complete SOC workflow.

Exam Title Certified SOC Analyst
Exam Code 312-39
Number of Questions 100
Duration 3 hours
Availability EC-Council Exam Portal (please visit https://www.eccexam.com)
Test Format Multiple Choice
Passing Score 70%

Kérdésed van az e-learninggel kapcsolatban?



Ezek a tanfolyamok és e-learningek is érdekelhetnek

Tekintsd meg néhány további képzésünket a témában


EC-Council Certified Chief Information Security Officer (CCISO) E-learning and Exam
(MFCCISO)

Ár:
499 500 Ft + Áfa
The CCISO certification is an industry-leading program that recognises the real-world experience necessary to succeed at the highest executive levels of information security. Bringing together all the components required for C-Level positions, the CCISO program combines audit management, governance, IS controls, human capital management, strategic program development and the financial expertise vital for leading a highly successful IS program. The CCISO Training Program can be the key to a successful transition to the highest ranks of information security management.
EC-Council Certified Secure Computer User v2 (CSCU) E-learning and Exam
(MFCSCU)

Ár:
79 500 Ft + Áfa
The CSCU training program aims at equipping students with the necessary knowledge and skills to protect their information assets. This course covers the fundamentals of various computer and network security threats, such as identity theft, credit card fraud, phishing, virus and backdoors, email hoaxes, loss of confidential information, hacking attacks and social engineering.
EC-Council Certified Network Defender (CND) E-learning and Exam
(MFCND)

Ár:
429 500 Ft + Áfa
The Certified Network Defender v3 (CND) credential is the most trusted network security certification that employers worldwide value and for good reasons. The comprehensive curriculum focuses on loT security, network virtualization practices for the remote workforce, enhanced cloud security, loT and operational technology (OT) modules, introduction to threat intelligence, in-depth attack surface analysis, and much more. 
EC-Council Certified Ethical Hacker (CEH) E-learning and Exam
(MFCEHE)

Ár:
499 500 Ft + Áfa
CEH is the world’s most advanced certified ethical hacking course that covers 20 of the most current security domains any individual will ever want to know when they are planning to beef-up the information security posture of their organisation. This accredited course provides the advanced hacking tools and techniques used by hackers and information security professionals. 
EC-Council Computer Hacking Forensic Investigator (CHFI) E-learning and Exam
(MFCHFI)

Ár:
429 500 Ft + Áfa
CHFI v10 captures all the essentials of digital forensics analysis and evaluation required for the modern world — tested and approved by veterans and top practitioners of the cyber forensics industry. From identifying the footprints of a breach to collecting evidence for a prosecution, CHFI v10 handholds students through every step of the process with experiential learning. CHFI v10 is engineered by industry practitioners for professionals including those such as forensic analysts, cybercrime investigator, cyber defense forensic analyst, incident responders, information technology auditor, malware analyst, security consultant, chief security officers and aspirants alike.
EC-Council Disaster Recovery Professional (EDRP) E-learning and Exam
(MFEDRP)

Ár:
429 500 Ft + Áfa
The EDRP v3 course identifies vulnerabilities and takes appropriate countermeasures to prevent and mitigate failure risks for an orginization. It also provides the networking professional with a foundation in disaster recovery course principles, including preparation of a disaster recovery plan, assessment of risks in the enterprise, development of policies and procedures, an understanding of the roles and relationships of various members of organisation, implementation of a plan and recovering from a disaster.
EC-Council Certified Incident Handler v2 (ECIH) E-learning and Exam
(MFECIH)

Ár:
229 500 Ft + Áfa
The ECIH program is designed to provide the fundamental skills to handle and respond to the computer security incidents in an information system. The course addresses various underlying principles and techniques for detecting and responding to current and emerging computer security threats. The comprehensive training program will make students proficient in handling as well as responding to various security incidents, such as network security incidents, malicious code incidents and insider attack threats.
Certified Application Security Engineer (CASE).NET E-learning and Exam
(MFCASENET)

Ár:
229 500 Ft + Áfa
CASE .NET goes beyond just the guidelines on secure coding practices but include secure requirement gathering, robust application design and handling security issues in post development phases of application development. This makes CASE one of the most comprehensive certifications for secure software development in the market today. It’s desired by software application engineers, analysts, testers globally and respected by hiring authorities. The hands-on training program encompasses security activities involved in all phases of the Secure Software Development Lifecycle (SDLC): planning, creating, testing and deploying an application.
Certified Application Security Engineer (CASE) Java E-learning and Exam
(MFCASEJAVA)

Ár:
229 500 Ft + Áfa
The CASE Java program is designed to be a hands-on, comprehensive application security training course that will help software professionals create secure applications. It trains software developers on the critical security skills and knowledge required throughout a typical software development lifecycle (SDLC), focusing on the importance of the implementation of secure methodologies and practices required in today’s insecure operating environment.
Certified Threat Intelligence Analyst (C|TIA) E-learning and Exam
(MFCTIAE)

Ár:
229 500 Ft + Áfa
The Threat Intelligence training program was based on a rigorous Job Task Analysis (JTA) of the job roles involved in the field of threat intelligence. This program differentiates threat intelligence professionals from other information security professionals. It is a highly interactive, comprehensive, standards-based, intensive 3-day training program that teaches information security professionals to build professional threat intelligence.
Certified Blockchain Professional (C|BP) E-learning and exam
(MFCBPE)

Ár:
429 500 Ft + Áfa
The Certified Blockchain Professional is fully vendor-agnostic and practical, focusing on the current state of blockchain technology as well as its future potential. The Certified Blockchain Professional course digs deep into the main characteristics and features of the distributed ledger technology (DLT) as well as introduces Blockchain’s new 3S (Secure-Scalable-Sustainable) proprietary framework. Students will also get a deep understanding of blockchain technology and mining of cryptocurrency.
EC-Council Certified Penetration Testing Professional (CPENT) E-learning and Exam
(MFCPENT)

Ár:
429 500 Ft + Áfa
EC-Council’s Certified Penetration Testing Professional (CPENT) program teaches you how to perform an effective penetration test in an enterprise network environment that must be attacked, exploited, evaded, and defended. If you have only been working in flat networks, CPENT’s live practice range will teach you to take your skills to the next level by teaching you how to pen test IoT systems, OT systems, how to write your own exploits, build your own tools, conduct advanced binaries exploitation, double pivot to access hidden networks, and also customize scripts/exploits to get into the innermost segments of the network.
EC-Council Certified Web Application Hacking and Security Tester (WAHS) E-learning and Exam
(MFWAHS)

Ár:
199 500 Ft + Áfa
Web Application Hacking and Security has challenges derived from the engaging iLab environments of EC Council – from Certified Ethical Hacker (CEH) to the Certified Penetration Testing Professional (CPENT); from Certified Application Security Engineer (CASE) .Net to Java. But Web Application Hacking and Security goes beyond this to more difficult scenarios as you advance through each problem. Web Application Hacking and Security is like a Capture-The-Flag (CTF) competitions meant to test your hacking skills. But you can keep on trying until you achieve the goal. Test your skills and work alone to solve complex problems or follow the instructor as they do a walkthrough to help you learn Web Application Hacking and Security. Watch your name rise on the leader board, a place where you’ll see who’s cracking the most challenges, who’s making the most progress, who’s cranking out the h@ck$!
EC-Council Ethical Hacking Core Skills E-learning and Exam
(MFEHCS)

Ár:
429 500 Ft + Áfa
In this course you will learn the core skills to build a solid security foundation. You will examine in detail the traffic that traverses the network at the packet and binary level. You will build solid knowledge on the lowest layers of the network. In the course, you will conduct extensive hands-on exercises. You will learn to master the TCP/IP protocol. You will learn essential UNIX and Linux survival skills that separate you from the many security professionals who are Windows centric.
Certified Information Systems Auditor (CISA) vizsgafelkészítő e-learning vizsga voucherrel
(MFCISAE)

Ár:
1 085 500 Ft + Áfa
This Certified Information Systems Auditor (CISA) Course provides delegates with in-depth knowledge about the Information Systems Audit process. During this training, they will learn about quality assurance, a systematic approach to determining if a product meets quality standards. They will also learn about disaster recovery plans that contain detailed instructions on responding to unplanned incidents.
Certified Information Security Manager (CISM) vizsgafelkészítő e-learning vizsga voucherrel
(MFCISME)

Ár:
1 085 500 Ft + Áfa
The Certified Information Security Manager (CISM) Training equips professionals with the skills and knowledge to safeguard valuable information assets. It is a highly relevant and crucial discipline in a technology-driven landscape. CISM, offered by ISACA, is a globally recognized certification that ensures individuals are well-versed in managing and governing an organization's information security.
Certified Cloud Security Professional (CCSP) vizsgafelkészítő e-learning vizsga voucherrel
(MFCCSPE)

Ár:
1 739 500 Ft + Áfa
This Certified Cloud Security Professional (CCSP) Certification Training Course is designed to empower delegates with the ability to understand the audit processes, methodologies, and adaptations required in a cloud environment. Delegates will gain insights into transitioning data, infrastructure, and applications from on-premises hardware to the cloud, ultimately boosting hybrid workforce productivity.
Certified Information Systems Security Professional (CISSP) vizsgafelkészítő e-learning
(MFCISSPE)

Ár:
1 739 500 Ft + Áfa
This Certified Information Systems Security Professional (CISSP) Training Course is designed to provide delegates with a rapid and comprehensive understanding of key CISSP concepts. Through interactive sessions, real-world case studies, and expert guidance, delegates will gain valuable insights into security policies, risk management, cryptography, and access control systems.
ISTQB Advanced Security Tester vizsgafelkészítő
(MFCTALSEC)

Hossz:
24 tanóra
Ár:
229 500 Ft + Áfa
Kedvezmény:
Időpontok:
okt. 07
White Hat Hacker
(MFWHH)

Hossz:
40 tanóra
Ár:

359 500 Ft + Áfa helyett 319 500 Ft + Áfa

Időpontok:
nov. 04