> > > SECOPS

Implementing Cisco Cybersecurity Operations (SECOPS)

Course Description Schedule

Who should attend

  • Security Operations Center – Security Analyst
  • Computer/Network Defense Analysts
  • Computer Network Defense Infrastructure Support Personnel
  • Future Incident Responders and Security Operations Center (SOC) personnel.
  • Students beginning a career, entering the cybersecurity field.
  • Cisco Channel Partners


This course is part of the following Certifications:


It is highly recommended to have the following skills and knowledge before attending this course:

Course Objectives

Today's organizations are challenged with rapidly detecting cybersecurity breaches and effectively responding to security incidents. Teams of people in Security Operations Centers (SOC’s) keep a vigilant eye on security systems, protecting their organizations by detecting and responding to cybersecurity threats. CCNA Cyber Ops prepares candidates to begin a career working with associate-level cybersecurity analysts within security operations centers.

This course allows learners to understand how a Security Operations Center (SOC) functions and the introductory-level skills and knowledge needed in this environment. It focuses on the introductory-level skills needed for a SOC Analyst at the associate level. Specifically, understanding basic threat analysis, event correlation, identifying malicious activity, and how to use a playbook for incident response.

Upon completion of this course, you will be able to:

  • Define a SOC and the various job roles in a SOC
  • Understand SOC infrastructure tools and systems
  • Learn basic incident analysis for a threat centric SOC
  • Explore resources available to assist with an investigation
  • Explain basic event correlation and normalization
  • Describe common attack vectors
  • Learn how to identifying malicious activity
  • Understand the concept of a playbook
  • Describe and explain an incident respond handbook
  • Define types of SOC Metrics
  • Understand SOC Workflow Management system and automation

Course Content

Module 1: SOC Overview

  • Lesson 1: Defining the Security Operations Center
  • Lesson 2: Understanding NSM Tools and Data
  • Lesson 3: Understanding Incident Analysis in a Threat-Centric SOC
  • Lesson 4: Identifying Resources for Hunting Cyber Threats

Module 2: Security Incident Investigations

  • Lesson 1: Understanding Event Correlation and Normalization
  • Lesson 2: Identifying Common Attack Vectors
  • Lesson 3: Identifying Malicious Activity
  • Lesson 4: Identifying Patterns of Suspicious Behavior
  • Lesson 5: Conducting Security Incident Investigations

Module 3: SOC Operations

  • Lesson 1: Describing the SOC Playbook
  • Lesson 2: Understanding the SOC Metrics
  • Lesson 3: Understanding the SOC WMS and Automation
  • Lesson 4: Describing the Incident Response Plan
  • Lesson 5: Appendix A—Describing the Computer Security Incident Response Team
  • Lesson 6: Appendix B—Understanding the use of VERIS
Classroom Training

Duration 5 days

Dates and Booking
Click on town name to book Schedule
Middle East
United Arab Emirates
15/12/2019 - 19/12/2019 Dubai Course language: English
15/12/2019 - 19/12/2019 Cairo Course language: English
09/09/2019 - 13/09/2019 Frankfurt
21/10/2019 - 25/10/2019 Munich
18/11/2019 - 22/11/2019 Berlin
29/07/2019 - 02/08/2019 Vienna (iTLS)
04/11/2019 - 08/11/2019 Brussels Course language: English
14/10/2019 - 18/10/2019 FLEX training This is an English language FLEX course.
Time zone: Europe/Sofia
14/10/2019 - 18/10/2019 Paris
02/12/2019 - 06/12/2019 FLEX training This is an English language FLEX course.
Time zone: Europe/Budapest
29/07/2019 - 02/08/2019 Milan
14/10/2019 - 18/10/2019 Rome
16/12/2019 - 20/12/2019 Milan
07/10/2019 - 11/10/2019 Utrecht Course language: English
02/09/2019 - 06/09/2019 FLEX training This is an English language FLEX course.
Time zone: Europe/Ljubljana
26/08/2019 - 30/08/2019 Madrid
18/11/2019 - 22/11/2019 Madrid
19/08/2019 - 23/08/2019 Zurich
United Kingdom
11/11/2019 - 15/11/2019 FLEX training This is an English language FLEX course.
Time zone: Europe/London
North America
United States
05/08/2019 - 09/08/2019 Glendale
05/08/2019 - 09/08/2019 Online Training Time zone: US/Central Course language: English
05/08/2019 - 09/08/2019 Online Training Time zone: US/Pacific Course language: English
30/09/2019 - 04/10/2019 Herdon, VA
30/09/2019 - 04/10/2019 Online Training Time zone: US/Eastern Course language: English
30/09/2019 - 04/10/2019 Online Training Time zone: US/Central Course language: English
18/11/2019 - 22/11/2019 Online Training Time zone: US/Central Course language: English
18/11/2019 - 22/11/2019 Overland Park
30/09/2019 - 04/10/2019 Online Training Time zone: Canada/Central Course language: English
Latin America
29/07/2019 - 02/08/2019 Online Training Time zone: America/Buenos_Aires Course language: Spanish guaranteed date!
26/08/2019 - 30/08/2019 Online Training Time zone: America/Santiago Course language: Spanish
02/09/2019 - 06/09/2019 Online Training Time zone: America/Bogota Course language: Spanish
04/11/2019 - 08/11/2019 Online Training Time zone: America/Lima Course language: Spanish
Fast Lane will carry out all guaranteed training regardless of the number of attendees, exempt from force majeure or other unexpected events, like e.g. accidents or illness of the trainer, which prevent the course from being conducted.
This computer icon in the schedule indicates that this date/time will be conducted as Instructor-Led Online Training.
This is a FLEX course, which is delivered both virtually and in the classroom.