SOC

Caricato da

NETRICH IT Solutions

Il 100% ha trovato utile questo documento (1 voto)

102 visualizzazioni3 pagine

SOC

Copyright

Formati disponibili

DOC, PDF, TXT o leggi online da Scribd

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Segnala questo documento

SOC

Copyright:

Formati disponibili

Scarica in formato DOC, PDF, TXT o leggi online su Scribd

Segnala contenuti inappropriati

Il 100% ha trovato utile questo documento (1 voto)

102 visualizzazioni3 pagine

SOC

Caricato da

NETRICH IT Solutions

SOC

Copyright:

Formati disponibili

Scarica in formato DOC, PDF, TXT o leggi online su Scribd

Segnala contenuti inappropriati

Salta alla pagina

Sei sulla pagina 1di 3

Cerca all'interno del documento

SOC COURSE CONTENT

Cyber attacks and intrusions are almost unfeasible to prevent, given the openness
of today’s networks and the growing sophistication of advanced threats. In
response, the practice of cyber security should focus on ensuring that intrusion and
compromise do not result in business damage or loss. SOC Engineer course from
Koenig will provide students with the advanced skills to combat advanced cyber
threats.

Who Should do the SOC Engineer [Security Operations Center] Training

Course?

SOC Engineer course is best suited for anyone who wants to establish his/her career
in cyber security. This course is recommended for the following professionals:

 Information security managers

 SOC Managers, Analysts & Engineers
 Information security architects
 IT managers
 Operations managers
 Risk management professionals
 IT/system administration/network administration professionals
 IT auditors
 Business continuity and disaster recovery staf

Course Content

Security Operations Center Concepts

o What is SOC
o Why is it required? (Objectives)
o SOC Infrastructure
o Log management
 Computer Security Log Management
 Log Management Infrastructure
 Log Management Planning
 Log Management Operational Process

SIEM (Security Information & Event Management)

o Introduction to SIEM
o SIEM Architecture
o Logs and Events
o Understanding logs, various formats
o Log Baselining
o Aggregation and normalization
o Event Collection and Event Correlation
o Correlation Rules
o IBM QRadar
 Components
 Installation & Deployment
 Initial Configuration
 Console Overview
 Lab
o ArcSight (MicroFocus)
 ArcSight Product Family
 Smart Connectors
 Logger
 ESM

Incident Response

o Incident Response Plan

 Purpose of Incident Response Plan
 Requirements of Incident Response Plan
 Preparation
o Incident Response and Handling Steps
 Step 1: Identification
 Step 2: Incident Recording
 Step 3: Initial Response
 Step 4: Communicating the Incident
 Step 5: Containment
 Step 6: Formulating a Response Strategy
 Step 7: Incident Classification
 Step 8: Incident Investigation
 Step 9: Data Collection
 Step 10: Forensic Analysis
 Step 11: Evidence Protection
 Step 12: Notify External Agencies
 Step 13: Eradication
 Step 14: Systems Recovery
 Step 15: Incident Documentation
 Step 16: Incident Damage and Cost Assessment
 Step 17: Review and Update the Response Policies
o Incident Management
 Purpose of Incident Management
 Incident Management Process
 Incident Management Team
o Incident Response Team
 Incident Response Team Members
 Incident Response Team Members Roles and Responsibilities
 Developing Skills in Incident Response Personnel
 Incident Response Team Structure
 Incident Response Team Dependencies
 Incident Response Team Services
 Defining the Relationship between Incident Response, Incident
Handling, and Incident Management
 Incident Response Best Practices
 Incident Response Policy
 Incident Response Plan Checklist

Potrebbero piacerti anche

TFN Declaration Form
Documento6 pagine
TFN Declaration Form
Tim Dunn
Nessuna valutazione finora
Information Systems Security Analyst in ST Louis MO Resume Derek Crain
Documento3 pagine
Information Systems Security Analyst in ST Louis MO Resume Derek Crain
DerekCrain
Nessuna valutazione finora
Four Ciso Tribes and Where To Find Them: Gary Mcgraw, Ph.D. Sammy Migues Brian Chess, PH.D
Documento24 pagine
Four Ciso Tribes and Where To Find Them: Gary Mcgraw, Ph.D. Sammy Migues Brian Chess, PH.D
ocruz80
Nessuna valutazione finora
01SS-Network Security Policy V.0.10
Documento10 pagine
01SS-Network Security Policy V.0.10
rengarajan82
Nessuna valutazione finora
Information Security Assessment Process
Documento23 pagine
Information Security Assessment Process
Narender Kumar
Nessuna valutazione finora
Prabhakar Koorapati: Career Objective
Documento4 pagine
Prabhakar Koorapati: Career Objective
Prabha VAPT
Nessuna valutazione finora
Build Size and Aesthetics with the 6-Week Hype Gains Hypertrophy Program
Documento21 pagine
Build Size and Aesthetics with the 6-Week Hype Gains Hypertrophy Program
DanCurtis
100% (1)
F5 Tcpdump
Documento14 pagine
F5 Tcpdump
NETRICH IT Solutions
Nessuna valutazione finora
What is a Security Operations Center (SOC
Documento8 pagine
What is a Security Operations Center (SOC
Akashdube
Nessuna valutazione finora
Active Directory Services Audit - Document References
Documento7 pagine
Active Directory Services Audit - Document References
Jinish KG
100% (1)
Data Security Checklist - 0
Documento4 pagine
Data Security Checklist - 0
Rinku Tyagi
Nessuna valutazione finora
Firewall Policy PDF
Documento4 pagine
Firewall Policy PDF
Mahesh Srini
Nessuna valutazione finora
S6MT 1Q w1 3 MELC1 SLM MIXTURES FinalCopy09082020
Documento26 pagine
S6MT 1Q w1 3 MELC1 SLM MIXTURES FinalCopy09082020
Rona Dindang
100% (1)
Enterprise Cyber Security Strategy Program and Governnace
Documento27 pagine
Enterprise Cyber Security Strategy Program and Governnace
Mohamed Shafi K K
Nessuna valutazione finora
Risk MGMT For CComputing
Documento24 pagine
Risk MGMT For CComputing
George Reyes
Nessuna valutazione finora
QSA Main Student Study Guide 4.12
Documento21 pagine
QSA Main Student Study Guide 4.12
Jon Gordon
Nessuna valutazione finora
Anish Bhagoria
Documento5 pagine
Anish Bhagoria
Sourabh Sharma
Nessuna valutazione finora
Qualified Security Assessor Complete Self-Assessment Guide
Da Everand
Qualified Security Assessor Complete Self-Assessment Guide
Gerardus Blokdyk
Nessuna valutazione finora
Cybrary CISM
Documento98 pagine
Cybrary CISM
Felix Rivera
Nessuna valutazione finora
14 Domains of ISO 27001: Cybersecurity Career Launcher
Documento9 pagine
14 Domains of ISO 27001: Cybersecurity Career Launcher
Rohan
Nessuna valutazione finora
Project Report On Air Filter
Documento5 pagine
Project Report On Air Filter
EIRI Board of Consultants and Publishers
Nessuna valutazione finora
Privileged Account Incident Response Plan Template
Documento18 pagine
Privileged Account Incident Response Plan Template
kkkk_2
Nessuna valutazione finora
Firewall-Hardening Basic Checklist
Documento5 pagine
Firewall-Hardening Basic Checklist
Senthil Durairaj
100% (1)
ISO 27001 BMS-2017 - ISO 27001 BMS-2017 - Document Jayesh Technologies
Documento17 pagine
ISO 27001 BMS-2017 - ISO 27001 BMS-2017 - Document Jayesh Technologies
Anil Thomas
Nessuna valutazione finora
Small Gas Turbines 4 Lubrication
Documento19 pagine
Small Gas Turbines 4 Lubrication
ValBMS
Nessuna valutazione finora
ABS Part4 - Vessel Systems & Machinery - 2001
Documento710 pagine
ABS Part4 - Vessel Systems & Machinery - 2001
AndréMenezes
Nessuna valutazione finora
SOC Questions
Documento24 pagine
SOC Questions
Dark Storm Wolf
Nessuna valutazione finora
Preparing For The CISM Exam
Documento1 pagina
Preparing For The CISM Exam
adane24
Nessuna valutazione finora
Vapt
Documento25 pagine
Vapt
Naveen Thakur
Nessuna valutazione finora
Environmental, Human Threats to Security and Availability
Documento5 pagine
Environmental, Human Threats to Security and Availability
P P
Nessuna valutazione finora
Checklist
Documento4 pagine
Checklist
nmukherjee20
Nessuna valutazione finora
Control Control Requirements: Statement of Applicability
Documento3 pagine
Control Control Requirements: Statement of Applicability
Jamal Deen
Nessuna valutazione finora
HarshwardhanKamdi (9 0)
Documento3 pagine
HarshwardhanKamdi (9 0)
bhanumurthybeeraka
Nessuna valutazione finora
Cashify mobile app, cloud security audit
Documento4 pagine
Cashify mobile app, cloud security audit
Apoorva Arora
Nessuna valutazione finora
1 180 Server Hardening Policy
Documento1 pagina
1 180 Server Hardening Policy
logicR
Nessuna valutazione finora
Manoj Gupta's IT Security and Governance Experience
Documento4 pagine
Manoj Gupta's IT Security and Governance Experience
Manoj
Nessuna valutazione finora
Defense in Depth Best Practices for Securing a Teradata Data Warehouse
Documento134 pagine
Defense in Depth Best Practices for Securing a Teradata Data Warehouse
Miguel Chia
Nessuna valutazione finora
IT Policy: Information Technology Manuals
Documento18 pagine
IT Policy: Information Technology Manuals
des_troyer_84
100% (1)
ISO 27001 - Operations
Documento13 pagine
ISO 27001 - Operations
Sasikala Mani
Nessuna valutazione finora
Movie Ethics Review
Documento4 pagine
Movie Ethics Review
pearlydawn
Nessuna valutazione finora
BCP Worksheet
Documento15 pagine
BCP Worksheet
Sushma Kishore
Nessuna valutazione finora
Heal Yourself in Ten Minutes AJ
Documento9 pagine
Heal Yourself in Ten Minutes AJ
Jason Mangrum
100% (1)
CSA Framework Policies Control Proc + Chpt11
Documento44 pagine
CSA Framework Policies Control Proc + Chpt11
RammyBrad
100% (1)
Cissp: (Certified Information Systems Security Professional)
Documento143 pagine
Cissp: (Certified Information Systems Security Professional)
shinwahasan
Nessuna valutazione finora
Cybersecurity Solutions From ManageEngine
Documento9 pagine
Cybersecurity Solutions From ManageEngine
Ashish Srivastava
Nessuna valutazione finora
Navigating the Dark Waters of Cybersecurity Incident Response
Da Everand
Navigating the Dark Waters of Cybersecurity Incident Response
Matthew C. Smith
Nessuna valutazione finora
CRMF Cyber Risk Framework
Documento9 pagine
CRMF Cyber Risk Framework
leo5880
0% (1)
Security Policies and Standards
Documento23 pagine
Security Policies and Standards
fdfddf
Nessuna valutazione finora
8 Protection of Information Assets
Documento59 pagine
8 Protection of Information Assets
Hassaan Sarfraz
100% (1)
Senior SOC Security Analyst L2 - Digital14
Documento1 pagina
Senior SOC Security Analyst L2 - Digital14
Jesus Velez
Nessuna valutazione finora
D Formation Damage StimCADE FDA
Documento30 pagine
D Formation Damage StimCADE FDA
Emmanuel Ekwoh
Nessuna valutazione finora
Saas Security Checklist
Documento3 pagine
Saas Security Checklist
Santhanamariyan T
Nessuna valutazione finora
Cloud Computing Security Breaches
Documento54 pagine
Cloud Computing Security Breaches
leon77banga
Nessuna valutazione finora
ISO Network Management Model
Documento22 pagine
ISO Network Management Model
Okemwa Jared
100% (1)
ISO 27001-2005 Awareness
Documento14 pagine
ISO 27001-2005 Awareness
qadir147
Nessuna valutazione finora
Scope: Step #1: Context Step #1: Context Step #1: Context Step #1: Context Step #1: Context
Documento2 pagine
Scope: Step #1: Context Step #1: Context Step #1: Context Step #1: Context Step #1: Context
Avinash Shelke
Nessuna valutazione finora
ISM3 and Its Objectives
Documento21 pagine
ISM3 and Its Objectives
Bendi Yashwanth
0% (1)
Auditing OS and Database Controls
Documento3 pagine
Auditing OS and Database Controls
sanoburmahmood
100% (1)
SOC Analyst Cyber Security Intrusion Training From Scratch
Documento3 pagine
SOC Analyst Cyber Security Intrusion Training From Scratch
Hitesh Rahangdale
Nessuna valutazione finora
Chandra - Auditing Cloud Computing
Documento17 pagine
Chandra - Auditing Cloud Computing
wawan_good
Nessuna valutazione finora
Guide to Procuring a Security Operations Centre (SOC
Documento10 pagine
Guide to Procuring a Security Operations Centre (SOC
ep230842
Nessuna valutazione finora
Security Audit Tools Free/Paid
Documento7 pagine
Security Audit Tools Free/Paid
Umesh DG
Nessuna valutazione finora
HIPAA Compliance Checklist
Documento3 pagine
HIPAA Compliance Checklist
Akram Alqadasi
Nessuna valutazione finora
HDFC - It-Bcp Case Study v1.0
Documento18 pagine
HDFC - It-Bcp Case Study v1.0
Love Aute
Nessuna valutazione finora
Vijay - Challenges of An ISMS Implementation
Documento29 pagine
Vijay - Challenges of An ISMS Implementation
shaheem_m
100% (1)
Week 2 Slides - PowerPoint
Documento18 pagine
Week 2 Slides - PowerPoint
Aditya
Nessuna valutazione finora
Information Security Management at HDFC Bank Contribution of Seven Enablers 1113
Documento8 pagine
Information Security Management at HDFC Bank Contribution of Seven Enablers 1113
Đaŋush Ralston Fox
Nessuna valutazione finora
ISO 27001:2013 Information Security Management Standard Sections
Documento15 pagine
ISO 27001:2013 Information Security Management Standard Sections
Adit
Nessuna valutazione finora
Production Control Group Copy The Source Program To Production Libraries
Documento7 pagine
Production Control Group Copy The Source Program To Production Libraries
rushic
Nessuna valutazione finora
Choose the Right Security Framework for Your Organization
Documento11 pagine
Choose the Right Security Framework for Your Organization
Jack
Nessuna valutazione finora
Ccna Lab Updated
Documento63 pagine
Ccna Lab Updated
NETRICH IT Solutions
Nessuna valutazione finora
Sessionhijackingbyrahultyagiethicalhackerfrompunjabtcil Itcertifiedethicalhacker 110511160859 Phpapp02 PDF
Documento13 pagine
Sessionhijackingbyrahultyagiethicalhackerfrompunjabtcil Itcertifiedethicalhacker 110511160859 Phpapp02 PDF
NETRICH IT Solutions
Nessuna valutazione finora
Cisco ASA Firewall Lab Workbook: RHC Technologies
Documento31 pagine
Cisco ASA Firewall Lab Workbook: RHC Technologies
bobwillmore
Nessuna valutazione finora
161209210918
Documento33 pagine
161209210918
NETRICH IT Solutions
Nessuna valutazione finora
F5 Ltm-140130073252-Phpapp
Documento149 pagine
F5 Ltm-140130073252-Phpapp
akino johnkennedy
Nessuna valutazione finora
Linux Course Content
Documento2 pagine
Linux Course Content
NETRICH IT Solutions
Nessuna valutazione finora
Lab 9-Measurement of Filtrate Loss and Mud Cake Thickness of Drilling Mud Sample Using Dead Weight Hydraulic Filter Press Considering API Standard.
Documento17 pagine
Lab 9-Measurement of Filtrate Loss and Mud Cake Thickness of Drilling Mud Sample Using Dead Weight Hydraulic Filter Press Considering API Standard.
Sunny Bba
Nessuna valutazione finora
Mimosa-by-Airspan-C5c Hoja de Especificaciones
Documento2 pagine
Mimosa-by-Airspan-C5c Hoja de Especificaciones
Juan atzin
Nessuna valutazione finora
Overhead Set (OBC)
Documento19 pagine
Overhead Set (OBC)
Mohamed
Nessuna valutazione finora
Schneider - Cptg010 en (Print)
Documento16 pagine
Schneider - Cptg010 en (Print)
el_koptan00857693
Nessuna valutazione finora
Canteen
Documento8 pagine
Canteen
mahesh4u
Nessuna valutazione finora
1324 1624 1824 Owners Manual 6 4 08
Documento64 pagine
1324 1624 1824 Owners Manual 6 4 08
Miguel Lop
Nessuna valutazione finora
SEXUALABUSE
Documento12 pagine
SEXUALABUSE
Ryoman Echozen
Nessuna valutazione finora
Temporomandibular Joint Syndrome
Documento11 pagine
Temporomandibular Joint Syndrome
Rahma Rahma
Nessuna valutazione finora
Reading 1
Documento2 pagine
Reading 1
Marcelo Borsini
Nessuna valutazione finora
Grade 9 P.E
Documento16 pagine
Grade 9 P.E
Brige Simeon
Nessuna valutazione finora
MSE 2103 - Lec 12 (7 Files Merged)
Documento118 pagine
MSE 2103 - Lec 12 (7 Files Merged)
md akibhossain
Nessuna valutazione finora
Batson Et All - 2007 - Anger and Unfairness - Is It Moral Outrage?
Documento15 pagine
Batson Et All - 2007 - Anger and Unfairness - Is It Moral Outrage?
Julia Gonzalez
Nessuna valutazione finora
RCF's Market Analysis of Dealer Network
Documento70 pagine
RCF's Market Analysis of Dealer Network
Ashok Kushwaha
Nessuna valutazione finora
ABB Leaflet Comem BR-En 2018-06-07
Documento2 pagine
ABB Leaflet Comem BR-En 2018-06-07
Dave Chaudhury
Nessuna valutazione finora
Buhos Summary
Documento1 pagina
Buhos Summary
clarissa abigail mandocdoc
Nessuna valutazione finora
Treating Thyroid Emergencies: Myxedema Coma and Thyroid Storm
Documento17 pagine
Treating Thyroid Emergencies: Myxedema Coma and Thyroid Storm
Marlon Ulloa
Nessuna valutazione finora
H1 Revision Notes DNA and Genomics
Documento6 pagine
H1 Revision Notes DNA and Genomics
JiaLi Xie
Nessuna valutazione finora
CSK - W - My - Mother - at - Sixty - Six 2
Documento2 pagine
CSK - W - My - Mother - at - Sixty - Six 2
Aaron Joshi
Nessuna valutazione finora
Flashover Influence of Fog Rate On The Characteristics of Polluted Silicone Rubber Insulators
Documento5 pagine
Flashover Influence of Fog Rate On The Characteristics of Polluted Silicone Rubber Insulators
daaanu
Nessuna valutazione finora
Anxiety
Documento5 pagine
Anxiety
drmadankumarbnys
Nessuna valutazione finora
Energy-Exergy Performance Evaluation of New HFO Refrigerants in The Modified Vapour Compression Refrigeration Systems
Documento9 pagine
Energy-Exergy Performance Evaluation of New HFO Refrigerants in The Modified Vapour Compression Refrigeration Systems
Ijrei Journal
Nessuna valutazione finora