The CCNA Cybersecurity Operations curriculum provides an introduction to the knowledge and skills needed for a Network Security Specialist working with a Security Operations Center team. Students learn core security skills needed for monitoring, detecting, investigating, analyzing and responding to security events, thus protecting systems and organizations from cybersecurity risks, threats and vulnerabilities. Upon completion of this course, students can prepare for the Implementing Cisco Cybersecurity Operations (SECOPS)Certification Exam.
Learning Objectives
Explain common Linux file system terms.
Investigate common security vulnerability terms as they are defined in the Common Vulnerability Scoring System (CVSS).
Identify the fields in common protocol headers as they relate to intrusion analysis.
Identify the key elements in an intrusion from a given PCAP file.
Extract files from a TCP stream when given a PCAP file and Wireshark.
Identify cybersecurity operations tools.
Interpret common artifact elements from an event to identify an alert.
Select the correct data types used for the common compliance frameworks.
Identify the elements that should be included in an incident response plan as stated in NIST.SP800-61.
Classify intrusion events into categories as defined by the Cyber Kill Chain Model.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.