Introduction to SOCs: A general overview of Security Operations Centers, including the core functions and responsibilities of SOC teams, standard operating procedures (SOPs), daily cycle, and the structure of routine SOC meetings.

IBM QRadar Offense Analysis Practice: Hands-on practice analyzing offenses using IBM QRadar. This section covers various types of web application attacks and teaches participants how to interpret offense data effectively.

CrowdStrike Falcon EDR Incident Analysis Practice: A practical session focused on analyzing real-world malware incidents using CrowdStrike Falcon EDR. Participants will learn how to investigate endpoint detections and understand typical threat behaviors.

Ticket Creation in Jira: Following the analysis exercises, we will practice creating and escalating incident tickets using the Jira platform—covering best practices in documentation and communication within SOC.