TOIT Training

Facebook X-twitter Linkedin Instagram
Menu
Beginner
Cisco

Cisco CyberOps Associate

Overview
Curriculum
  • 6 Sections
  • 49 Lessons
  • 8h Duration
Collapse All
Introduction to CyberOps Associate
4 Lessons
  1. Instructor
  2. Prerequisites
  3. CyberOps vs Information Security
  4. Course Overview
Introduction to Security Concepts
9 Lessons
  1. Understanding the CIA triad
  2. Standards
  3. Common security terms and concepts
  4. Security Deployments
  5. Defense-in-depth
  6. Access control models
  7. Common Vulnerability Scoring System CVSS
  8. S-tuple approach
  9. Rule-based & behavioral and statistical detection
Security Monitoring
9 Lessons
  1. Attack surface and vulnerability management
  2. Security effect on data visibility
  3. Data types in security monitoring
  4. Network attacks
  5. Web application attacks
  6. Social engineering attacks
  7. Endpoint-based attacks
  8. Certificates
  9. Certificate components
Host-Based Security
7 Lessons
  1. Endpoint technologies
  2. Operating system components
  3. Cyber Attribution
  4. Evidence types in logs
  5. Disk image inspection
  6. Log interpretation
  7. Malware analysis
Network Intrusion Analysis
10 Lessons
  1. Intrusion event identification
  2. Cybersecurity impact
  3. Packet filtering and inspection
  4. Inline traffic interrogation vs taps
  5. Network taps vs transactional data (NetFlow)
  6. Extracting files from a TCP stream
  7. Identifying intrusion using a PCAP file
  8. Analyzing protocol headers
  9. Identifying alerts from events
  10. Interpret basic regular expressions
Security Policies and Procedures
10 Lessons
  1. Management concepts
  2. NIST.SP800-61 response plan
  3. Incident handling process
  4. NIST.SP800-61 analysis steps
  5. NIST.SP800-86 concepts
  6. Network profiling elements
  7. Server profiling elements
  8. Protected data in a network
  9. Intrusion event classification
  10. SOC metrics & scope analysis

Overview

The Cisco CyberOps Associate course provides students with skills and knowledge to setup network infrastructure devices, operations, and vulnerabilities of the Transmission Control Protocol/Internet Protocol (TCP/IP) protocol suite. Students who have attended the CyberOps Associate online training course will gain competency with security concepts, common network application operations and attacks, the Windows and Linux operating systems, and the types of data used to investigate security incidents.

Exam Number: 200-201 – CBROPS

Deleting Course Review

Are you sure? You can't restore this back

Course Access

This course is password protected. To access it please enter your password below: