This immersive course provides a step-by-step introduction to the world of Security Operations Center (SOC) analysts. 

From understanding the SOC’s role within an organization to tackling real-world threats, you’ll experience firsthand what it takes to defend against cyber attacks. We’ll cover everything from analyzing detections to mitigating threats and navigating the essential tools of the trade.

By the end of this course, you’ll have a clear understanding of the skills and knowledge required to land your first SOC analyst job and succeed in a blue team environment.

Why you should attend

This course is designed for anyone aiming to break into the cybersecurity field, specifically within a SOC environment.

You’ll gain practical, hands-on experience that prepares you for the real-world challenges of a SOC analyst. If you want to understand the responsibilities, tools, and methodologies of blue team professionals and are serious about securing a role in cybersecurity, this workshop is a must-attend.

What you will learn

Participants will gain a deep understanding of essential blue team skills, including:

1. SOC Fundamentals:
   • What a SOC is and how it operates within an organization.
   • The structure and roles within a blue team, including how each role contributes to cybersecurity.
2. Core Concepts and Tools:
   • Learn about EDR (Endpoint Detection and Response) and XDR (Extended Detection and Response) technologies: what they are, how they work, and why they are vital in modern cybersecurity.
   • Explore SIEM (Security Information and Event Management) systems, understanding their purpose and practical use in monitoring and threat detection.
3. Detection and Threat Mitigation:
   • Practical techniques to analyze detections and differentiate between false positives and true positives.
   • Methods to respond to and mitigate threats in an environment, using detection signatures and effective threat hunting practices.
   • Detailed explanations of various detection methods: heuristic-based, signature-based, behavioral, network, and sandbox detection.
4. Hands-On Tools and Techniques:
   • Get hands-on experience using analysis tools like PowerShell and Bash for command-line operations on Windows and Linux.
   • Learn how to use OSQuery for endpoint visibility and threat hunting.
   • Basics of networking that are crucial for understanding threat movements and defenses.
5. Understanding Cyber Threats:
   • Types of malware and cyber attacks, including persistence techniques, privilege escalation, and lateral movement used by adversaries.
   • Methods attackers use to bypass EDR and detection systems.
6. Career Preparation:
   • Guidance on how to prepare for and secure your first role in a SOC.
   • Insight into what hiring managers look for in a SOC analyst, including key skills and experience to emphasize in your applications.