Cisco

CCNA Cyber Ops SECOPS (210-255)

Lessons
Lab
TestPrep
Video Lessons (Añadir)
104 Revisar
Obtenga una prueba gratuita

Habilidades que obtendrás

La certificación Cisco CCNA Cyber Ops brinda a los candidatos la oportunidad de iniciar una carrera profesional en un Centro de Operaciones de Seguridad (SOC), trabajando con analistas de ciberseguridad de nivel asociado. El examen CCNA SECOPS 210-255 valida la capacidad del candidato para gestionar eficazmente las tareas, compromisos y responsabilidades de un analista de seguridad de nivel asociado. El examen de certificación CCNA Cyber Ops demuestra que el candidato posee las habilidades relacionadas con los conceptos de seguridad, la monitorización de la seguridad y el análisis de intrusiones en la red.
Descargar el esquema del curso

1

Introduction

  • About the 210-255 CCNA Cyber Ops SECOPS Exam
  • About the CCNA Cyber Ops SECOPS #210-255 Official Cert Guide
2

Threat Analysis

  • What Is the CIA Triad: Confidentiality, Integrity, and Availability?
  • Threat Modeling
  • Defining and Analyzing the Attack Vector
  • Understanding the Attack Complexity
  • Privileges and User Interaction
  • The Attack Scope
  • Review All Key Topics
3

Forensics

  • Introduction to Cybersecurity Forensics
  • The Role of Attribution in a Cybersecurity Investigation
  • The Use of Digital Evidence
  • Fundamentals of Microsoft Windows Forensics
  • Fundamentals of Linux Forensics
  • Review All Key Topics
4

Fundamentals of Intrusion Analysis

  • Common Artifact Elements and Sources of Security Events
  • Understanding Regular Expressions
  • Protocols, Protocol Headers, and Intrusion Analysis
  • Using Packet Captures for Intrusion Analysis
  • Review All Key Topics
5

NetFlow for Cybersecurity

  • Introduction to NetFlow
  • NetFlow Versions
  • IPFIX
  • NetFlow for Cybersecurity and Incident Response
  • NetFlow Analysis Tools
  • Review All Key Topics
6

Introduction to Incident Response and the Incident Handling Process

  • Introduction to Incident Response
  • The Incident Response Plan
  • The Incident Response Process
  • Information Sharing and Coordination
  • Incident Response Team Structure
  • The Vocabulary for Event Recording and Incident Sharing (VERIS)
  • Review All Key Topics
7

Incident Response Teams

  • Computer Security Incident Response Teams (CSIRTs)
  • Product Security Incident Response Teams (PSIRTs)
  • National CSIRTs and Computer Emergency Response Teams (CERTs)
  • Coordination Centers
  • Incident Response Providers and Managed Security Service Providers (MSSPs)
  • Review All Key Topics
8

Compliance Frameworks

  • Payment Card Industry Data Security Standard (PCI DSS)
  • Health Insurance Portability and Accountability Act (HIPAA)
  • Sarbanes-Oxley (SOX)
  • Summary
  • References
  • Review All Key Topics
9

Network and Host Profiling

  • Network Profiling
  • Host Profiling
  • Summary
  • References
  • Review All Key Topics
10

The Art of Data and Event Analysis

  • Normalizing Data
  • Using the 5-Tuple Correlation to Respond to Security Incidents
  • Retrospective Analysis and Identifying Malicious Files
  • Mapping Threat Intelligence with DNS and Other Artifacts
  • Deterministic Versus Probabilistic Analysis
  • Review All Key Topics
11

Intrusion Event Categories

  • Diamond Model of Intrusion
  • Cyber Kill Chain Model
  • Summary
  • References
  • Review All Key Topics

1

Threat Analysis

  • Scanning the Rootkit
  • Performing the Initial Scan
  • Understanding attack complexity
2

Forensics

  • Understanding cybersecurity investigations
  • Understanding disk imaging
  • Understanding Windows file system
  • Understanding file system structure
  • Understanding Linux Boot Process
3

Fundamentals of Intrusion Analysis

  • Understanding fundamentals of intrusion analysis
  • Understanding security threat intelligence
  • Understanding evasion techniques
  • Understanding header protocol
  • Working with Wireshark's Interface
  • Analyzing the Capture File to Find the Attack(s)
  • Generating Network Traffic and Using Filters
  • Examining the traffic between client and server
  • Confirming the Spoofing Attack in Wireshark
  • Observing Traffic Patterns Using Wireshark
  • Analyzing Protocols with Wireshark
4

NetFlow for Cybersecurity

  • Understanding NetFlow cache
  • Understanding NetFlow for cybersecurity
  • Examining the DDOS_Attack.pcap File
  • Exporting your Windows logs
  • Making Syslog Entries Readable
  • Identifying a suspicious account on the System User Groups
  • Enabling logging for audited objects
  • Examining the Audited Events
5

Introduction to Incident Response and the Incident Handling Process

  • Understanding response plan
  • Understanding VERIS schema
6

Incident Response Teams

  • Establishing a CSIRT
  • Consulting a Vulnerability Database
7

Compliance Frameworks

  • Uploading the Trojan horse simulator to VirusTotal
  • Uploading the Trojan horse simulator to Malware
  • Assessing the impact of malware
8

Network and Host Profiling

  • Understanding network profiling
9

The Art of Data and Event Analysis

  • Understanding SIEM
  • Using 5-Tuple correlation
  • Understanding threat intelligence
  • Understanding event analysis
10

Intrusion Event Categories

  • Performing Reconnaissance on a Network
  • Understanding Kill Chain Model

¿Por qué a los estudiantes les encanta este curso?

The uCertify Pearson-CISSP-2018-Complete Course has been an enormously useful training and interactive exam preparation resource. The content includes information, tips, and examples that cover the eight (8) CISSP Domains This course helps with this by dividing lessons into small, understandable mini-lessons.

Fred Harris
Security Project Manager

uCertify eBook learning equips you with the knowledge to ace the exam and to become an authority in your field. The interactive lessons and effective test prep play a big role in committing topics to memory; while the hands-on lab gives a degree of understanding of the course. Not forgetting the UX/UI design layout, it is easy and simple to navigate throughout the course guide.

Emeka Ezirim
Emeka Ezirim
Systems Analyst

¿Alguna pregunta? Consulta las preguntas frecuentes

¿Aún tienes preguntas sin respuesta y necesitas ponerte en contacto?

Contáctanos ahora

No hay requisitos previos oficiales para el examen de certificación.

300 dólares estadounidenses

Pearson VUE

Opción única, opción múltiple, arrastrar y soltar, completar espacios en blanco, simulación de enrutador, preguntas de testlet y simlet.

El examen contiene entre 60 y 70 preguntas.

90 minutos

Las políticas para repetir exámenes son las siguientes:

  • Los candidatos que no aprueben un examen de Asociado, Profesional o Especialista deberán esperar un período de cinco (5) días calendario, a partir del día siguiente del intento fallido, antes de poder volver a tomar el mismo examen.
  • Los candidatos que no aprueben cualquier examen escrito del CCIE o CCDE deberán esperar un período de 15 días calendario, a partir del día siguiente del intento fallido, antes de volver a tomar el mismo examen.
  • Una vez aprobado, un candidato debe esperar un mínimo de 180 días antes de tomar el mismo examen con un número de examen idéntico.
  • Los candidatos que infrinjan estas políticas estarán incumpliendo el acuerdo. Dicha conducta está estrictamente prohibida, tal como se describe en el acuerdo de certificación y confidencialidad de Cisco.

Tres años

Conozca más sobre el 210-255

CCNA Cyber Ops SECOPS (210-255)

$279.99

Comprar ahora

Cursos relacionados

Todo el curso