Cisco CyberOps

The course covers all the main areas of cyber security and information security management used in modern businesses.

1. Security Concepts
   • Learn what cyber security means and why confidentiality, integrity, and availability (CIA) matter.
   • Explore common cyber security threats such as malware, phishing, and DoS/DDoS attacks.
   • Understand risk management, vulnerability management, and threat intelligence.
2. Security Monitoring
   • See how a Security Operations Centre (SOC) works and what analysts do.
   • Learn about SIEM systems and how they detect attacks.
   • Use tools to review data from routers, switches, and firewalls.
   • Practise reading network traffic logs and spotting unusual activity.
3. Cryptography
   • Understand the basics of encryption and decryption.
   • Learn about SSL/TLS, IPsec, and VPNs for secure communication.
   • See how hashing and digital signatures protect data integrity.
   • Discover how cryptography keeps business data safe.
4. Endpoint Security and Computer Forensics
   • Protect PCs, servers, and mobile devices from attack.
   • Read endpoint logs to find signs of compromise.
   • Use forensic tools to collect and review evidence.
   • See how memory and disk analysis help uncover hidden threats.
5. Network Intrusion Analysis
   • Use Wireshark to detect harmful network activity.
   • Identify Man-in-the-Middle, IP spoofing, and reconnaissance attacks.
   • Learn to read packet captures and spot signs of intrusion.
   • Understand IDS and IPS tools for defending networks.6
6. Security Policies and Procedures
   • Study cyber security frameworks like NIST, ISO/IEC 27001, and COBIT.
   • Learn how security policies protect company data.
   • Create and follow an Incident Response Plan (IRP).
   • See how planning and documentation reduce cyber risk.
7. Security Solutions and Technologies
   • Work with firewalls, antivirus software, and email security tools.
   • Learn how VPNs keep remote access safe.
   • Explore Zero Trust Architecture for modern network security.
   • Apply security baselines and strong configurations on all devices.
8. Threat Intelligence
   • Use threat intelligence to predict and prevent attacks.
   • Gather Open Source Intelligence (OSINT) on possible threats.
   • Access and analyse threat feeds to match activity with risks.
   • Identify Indicators of Compromise (IoCs) and TTPs used by attackers.
9. Incident Response
   • Follow the full incident response cycle: prepare, detect, analyse, respond, recover, and review.
   • Learn best practices for handling incidents and reducing damage.
   • Use forensic tools to collect and protect evidence.
   • Communicate and document your findings clearly.
10. Automation and Orchestration in Security
    • Explore how automation makes cyber security faster and easier.
    • Understand SOAR platforms that streamline tasks.
    • Practise simple Python scripting to automate daily work.
    • See how automation supports a modern SOC.