Menu
- This event has passed.
Aug
23
Network Operations Center (NOC) Best Practices
August 23 @ 9:00 am - August 24 @ 5:00 pm
Event Navigation
Network Operations Center (NOC) Best Practices
This course will teach essential skills and best practices required for NOC operations. Through the use of Security Information and Event Management (SIEM) tools, students will learn how to log events, respond to network disruptions, and communicate effectively with team members and leadership. Students will learn various architectural designs that provide robust scalability, resiliency, and distributed operations to meet enterprise architecture requirements.
Students will learn about the evolution of SIEM through centralized logging solutions. Students will learn various architectural designs that provide robust scalability, resiliency, and distributed operations to meet various organization’s enterprise architecture requirements.
Course Location
This course is presented in person:
Star Park Training Facility, Multipurpose Room 173
3055 Hunter Rd, San Marcos, TX, 78666
Due to the COVID-19 pandemic, we will be limiting the number of attendees to allow for safe social distancing during each presentation.
Key Features
- NOC skills and responsibilities
- SIEM Fundamentals
- SIEM processes and data structuring
- Environmental visibility using SIEM
- Hands-on experience architecting and implementing SIEM solutions
- Infrastructure Monitoring
- Hands-on experience building content for threat detection
Who Should Attend
- NOC Analyst
- SOC Analyst
- NOC Engineer
- Network Engineer
- Security Engineer
- NOC Manager
- SIEM Engineer
- Those interested in implementing and deploying a SIEM system
Requirements
- Basic understanding of TCP/IP and general OS fundamentals
- Understanding of the OSI model, troubleshooting commands, etc.
- Some basic entry-level security concepts are assumed
- Being accustomed to the Linux command-line network security monitoring and SIEM is a bonus.
Day 1 Schedule
| Introduction to the NOC | 09:00a-10:30a |
| Roles and Responsibilities | 11:00a-12:15p |
| Networking Concepts | 01:30p-03:00p |
| Structuring Data Using SIEM Tools | 03:30p-05:00p |
Day 2 Schedule
| SIEM Architecture and Implementation | 09:00a-10:30a |
| Network Threat Detection | 11:00a-12:15p |
| Incident Response and Reporting | 01:30p-03:00p |
| Capstone Exercise | 03:30p-05:00p |
Course Fee: $1,664.00 per person
Instructor
Francois is a passionate and driven InfoSec professional with over 5 years of experience teaching blue teaming skills to hundreds of students. He has a Master’s degree in Cybersecurity and Information Assurance from WGU and holds numerous industry certifications including A+, Net+, Sec+, Linux+, CySA+, CEH, CHFI, ITILv3, etc. Francois is engaged in the Cybersecurity field and believes that teaching is one way for him to give back to the Cyber Community.
Instructor Statement:
“As someone who has worked and taught SOC Analyst courses to hundreds of students, I thoroughly understand the struggle of starting your first position in Cyberdefense. While there is a seemingly infinite amount of information to learn, there are certain central concepts that, when explained systematically, can greatly shorten the time required to become a productive member of the SOC team. This course is designed to pass this knowledge on to you. While some believe SOC positions can feel like a grind, they do not need to be that way. This course goes beyond technical knowledge to also teach the concepts that, if implemented in your SOC, will keep you and your colleagues challenged, happy, and constantly growing in your day-to-day work!” ~ Francois B. Arthanas
This training is presented as a joint venture between Cyberkraft Training and Direct Line to Compliance in cooperation with CIEDAR and Texas State University.
