This is a comprehensive 5-week intensive course designed to enhance your skills in Security Operations Center roles with a focus on hands-on practices, Python programming, and AI tools. The course covers essential topics including SOC fundamentals, web and network security, incident response, and Python programming for SOC tasks.

To optimize the effectiveness of the SOC Training and Practice Program within the allotted time, we recommend the following prerequisites: Participants should possess a foundational understanding of Cybersecurity and Networking concepts. CompTIA Network+ or CompTIA Security+ or any equivalent training or certificates are highly recommended as they align well with the training content.

The course runs for 5 weeks with weekly modules covering different aspects of SOC operations, Python programming, and AI tools.

These modules focus on practical exercises and real-world scenarios to build proficiency in SOC tools and techniques, including Splunk, IBM QRadar, Falcon Crowdstrike EDR, and Wireshark.

In this week, you’ll start with an orientation briefing, providing an overview of the curriculum, procedural guidelines, and course implementation protocols. You’ll then delve into the foundational elements of Security Operations Centers, learning about the roles and functions of SOC teams and their daily operations. This week also covers web application fundamentals, Linux basics, and introduces you to Splunk for search and reporting, along with hands-on log analysis for ModSecurity, Syslog, and authentication/access logs.

This module focuses on web security, beginning with interactive demonstrations of common web attack vectors such as SQL injection and cross-site scripting (XSS). You’ll also learn to analyze phishing emails through hands-on exercises and real-world examples. The module covers IBM QRadar operations and offense analysis, providing you with comprehensive knowledge of this essential SOC tool. You’ll also learn how to effectively use JIRA for ticket management within an SOC, culminating in practice sessions that integrate the skills learned.

EDR (Endpoint Detection and Response) tools are crucial for identifying, investigating, and mitigating security threats at the endpoint level, providing visibility into potential threats and enabling rapid response. Falcon Crowdstrike, in particular, is a leading EDR tool known for its advanced threat detection capabilities, real-time incident investigation, and robust endpoint protection. It helps SOC analysts detect suspicious behaviors and network activities, enhancing the overall security posture of an organization. Training on Falcon Crowdstrike focuses on incident investigation, detection analysis, and identifying suspicious behaviors, solidifying your proficiency with this essential SOC tool.

This module emphasizes advanced SOC practices, where you’ll continue your role as an L1 SOC Analyst, applying knowledge of SIEM and Falcon Crowdstrike EDR tools. You’ll actively participate in daily SOC operations, focusing on continuous security monitoring and incident handling. The module also introduces Wireshark, covering its operation for packet capture, analysis, and troubleshooting. Through practical exercises, you’ll develop skills in interpreting packet data and detecting network-based threats.

Packet capturing tools are essential for monitoring network traffic, analyzing data packets, and troubleshooting network issues. Wireshark is a powerful packet capture tool used to identify security anomalies, investigate network problems, and perform deep packet inspection. In the Wireshark classes, you will learn to operate Wireshark for packet capture, analysis, and troubleshooting. Through practical exercises, you’ll develop skills in interpreting packet data, detecting network-based threats, and conducting comprehensive network analysis. These classes ensure you can effectively utilize Wireshark to enhance network security and investigative capabilities within a SOC environment.

Soft skill sessions focus on professional and personal development, including experience sharing, communication, and problem-solving skills. They enhance your ability to work effectively in IT environments.

Active participation and consistent practice are crucial for maximizing your learning experience and skill development.

The course provides a comprehensive foundation in SOC operations, Python programming, and AI tools. It prepares you for various SOC roles and enhances your readiness for advanced cybersecurity courses and professional opportunities.

You can reach out through the class communication channels, such as chat and email, for support and questions.

Yes, the course includes hands-on practices and tasks during the class hours to reinforce learning and practical skills.

Registration details can be found on the course website or by contacting the enrollment team at enrollment@cydeo.com