Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Cyber attacks and intrusions are almost unfeasible to prevent, given the openness
of today’s networks and the growing sophistication of advanced threats. In
response, the practice of cyber security should focus on ensuring that intrusion and
compromise do not result in business damage or loss. SOC Engineer course from
Koenig will provide students with the advanced skills to combat advanced cyber
threats.
SOC Engineer course is best suited for anyone who wants to establish his/her career
in cyber security. This course is recommended for the following professionals:
Course Content
o What is SOC
o Why is it required? (Objectives)
o SOC Infrastructure
o Log management
Computer Security Log Management
Log Management Infrastructure
Log Management Planning
Log Management Operational Process
o Introduction to SIEM
o SIEM Architecture
o Logs and Events
o Understanding logs, various formats
o Log Baselining
o Aggregation and normalization
o Event Collection and Event Correlation
o Correlation Rules
o IBM QRadar
Components
Installation & Deployment
Initial Configuration
Console Overview
Lab
o ArcSight (MicroFocus)
ArcSight Product Family
Smart Connectors
Logger
ESM
Incident Response