EC-Council SOC Essentials (SCE)

Price
$1,095.00 USD

Duration
2 Days

Delivery Methods
Virtual Instructor Led
Private Group

Request More Information

Download Course Details

Course Details Only
Course Details & Schedule

Skip to Class Dates

Course Overview

The SOC Essentials (S|CE) Series is designed for security professionals and freshers to enhance their skills and knowledge about essential security technologies. Focused on honing candidates with in-demand skills, the S|CE course will provide insights into security operations frameworks and related technologies that are required to master the foundational concepts of SOC.

In this program students will learn the basics of computer networks, TCP/IP model, OSI model, Windows/Linux/Unix security concepts, threats, vulnerabilities, and attack concepts in terms of cyber threats. Further, students will go through the complete SOC architecture: its importance, workflow, and processes of SOC. Students will learn more advanced architectural concepts like SIEM architecture and deployment models, and data sources that are commonly used. Learn everything about Log Management like; dashboards, reports, and incident escalation in terms of dealing with real positive and false alerts. This course will also teach you sources, types, and lifecycle of threat intelligence and give an introduction to threat hunting as well while diving deep into incident response lifecycle processes. Put your newly acquired abilities to the test with an exhilarating Capture the Flag (CTF) Exercise seamlessly integrated in our Capstone project. This CTF is seamlessly integrated by live virtual machines, genuine software, and real networks, all delivered within a secure and regulated sandbox environment. With these exclusive hands-on, human-versus-machine CTF challenges you will develop the hands-on proficiencies essential for success in your cyber professional role.

Course Objectives

Learn the basics of computer networks
Dive deep into the cyber threat concepts like threats, vulnerabilities, and attacks.
Gain insights into the Security Operations Center (SOC) architecture and learn the importance, workflow, and processes of SOC.
Understand advanced architectural concepts like SIEM architecture and deployment models.
Learn what log management is and its key parts, like events, logs, and incidents.
Learn how you can perform centralized management of logs.
Gain knowledge on dashboards, reports, and incident escalation in terms of dealing with real positive and false alerts.
Discover the sources, types, and lifecycle of threat intelligence and get introduced to threat hunting.
Deep dive into the Incident response lifecycle.

Who Should Attend?

School students, graduates, professionals, career starters and changers, IT/Technology/Cybersecurity teams with little or no work experience.
Anyone who wants to start a career in cybersecurity and is interested in SOC.
This course is also helpful for IT professionals, SOC analysts, system security professionals, security engineers, threat management professionals, incident response teams, security administrators, vulnerability management professionals, and any cybersecurity professional.

Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.

Learning Credits: Learning Credits can be purchased well in advance of your training date to avoid having to commit to specific courses or dates. Learning Credits allow you to secure your training budget for an entire year while eliminating the administrative headache of paying for individual classes. They can also be redeemed for a full year from the date of purchase. If you have previously purchased a Learning Credit agreement with New Horizons, you may use a portion of your agreement to pay for this class.

If you have questions about Learning Credits, please contact your Account Manager.

Corporate Tech Pass: Our Corporate Tech Pass includes unlimited attendance for a single person, in the following Virtual Instructor Led course types: Microsoft Office, Microsoft Technical, CompTIA, Project Management, SharePoint, ITIL, Certified Ethical Hacker, Certified Hacking Forensics Investigator, Java, Professional Development Courses and more. The full list of eligible course titles can be found at https://www.newhorizons.com/eligible.

If you have questions about our Corporate Tech Pass, please contact your Account Manager.

Course Prerequisites

There are no prerequisites for this course.

Agenda

Module 2: Fundamentals of Cyber Threats

Cyber Threats
Intent-Motive-Goal
Tactics-Techniques-Procedures (TTPs)
Opportunity-Vulnerability-Weakness
Vulnerability
Threats & Attacks
Example of Attacks
Network-based Attacks
Application-based
Host Based Attacks
Insider Attacks
Malware (Viruses, Worms, Ransomware, etc.)
Phishing and Social Engineering

Module 3: Introduction to Security Operations Center

What is a Security Operations Center (SOC)?
Importance of SOC
SOC Team Roles and Responsibilities
SOC KPI
SOC Metrics
SOC Maturity Models
SOC Workflow and Processes
Challenges in Operating a SOC

Module 4: SOC Components and Architecture

Key Components of a SOC
People in SOC
Processes in SOC
Technologies in SOC
SOC Architecture and Infrastructure
Different Types of SOC and Their Purposes
Introduction to SIEM
SIEM Architecture
SIEM Deployment Models
Data Sources in SIEM
SIEM Logs
Networking in SIEM
Endpoint Data in SIEM

Module 5: Introduction to Log Management

Incident
Event
Log
Typical Log Sources
Need of Log
Typical Log Format
Local Log Management
Centralized Log Management
Logging Best Practices
Logging/Log Management Tools

Module 6: Incident Detection and Analysis

SIEM Use Case Development
Security Monitoring and Analysis
Correlation Rules
Dashboards
Reports
Alerting
Triaging Alerts
Dealing with False Positive Alerts
Incident Escalation
Communication Paths
Ticketing Systems

Module 7: Threat Intelligence and Hunting

Introduction to Threat Intelligence
Threat Intelligence Sources
Threat Intelligence Types
Threat Intelligence Lifecycle
Role of Threat Intelligence in SOC Operations
Threat Intelligence Feeds
Threat Intelligence Sharing and Collaboration
Threat Intelligence Tools/Platforms
Introduction to Threat Hunting
Threat Hunting Techniques
Threat Hunting Methodologies
Role of Threat Hunting in SOC Operations
Leveraging Threat Intelligence for Hunting
Threat Hunting Tools

Module 8: Incident Response and Handling

Incident Handling Process
Incident Classification and Prioritization
Incident Response Lifecycle
Preparation
Identification
Containment
Eradication
Recovery
Post-Incident Analysis and Reporting

Get in touch to schedule training for your team
We can enroll multiple students in an upcoming class or schedule a dedicated private training event designed to meet your organization’s needs.