BONUS! Cyber Phoenix Subscription Included: All Phoenix TS students receive complimentary ninety (90) day access to the Cyber Phoenix learning platform, which hosts hundreds of expert asynchronous training courses in Cybersecurity, IT, Soft Skills, and Management and more!
Course Overview
OSDA Certification
Learn the foundations of cybersecurity defense with Foundational Security Operations and Defensive Analysis (SOC-200), a course designed for job roles such as Security Operations Center (SOC) Analysts and Threat Hunters. Learners gain hands-on experience with a SIEM, identifying and assessing a variety of live, end-to-end attacks against a number of different network architectures. Learners who complete the course and pass the exam earn the OffSec Defense Analyst (OSDA) certification, demonstrating their ability to detect and assess security incidents. This course is intended for Security Operations Center (SOC) Tier 1, Tier 2 and Tier 3 Analysts, Jr. roles in Threat Hunting and Threat Intelligence Analysts, Jr. roles in Digital Forensics and Incident Response (DFIR and anyone interested in detection and security operations, and/or committed to the defense or security of enterprise networks. At the completion of this course, participants will be able to:
- Gain proficiency in security operations and adopt best practices in the field.
- Acquire hands-on experience in examining log files to uncover traces of prevalent attack techniques.
- Set up and oversee a Security Information and Event Management (SIEM) system to detect ongoing attacks across a network.
- Develop the ability to manually scrutinize logs, enabling the identification of both typical and anomalous activities, distinguishing between benign and malicious behavior.
Schedule
Currently, there are no public classes scheduled. Please contact a Phoenix TS Training Consultant to discuss hosting a private class at 301-258-8200.
Program Level
Beginner
Prerequisites
- SOC-100: Linux Basics 1 & 2
- SOC-100: Windows Basics 1 & 2
- SOC-100: Networking Basics
Course Outline
Attacker Methodology Introduction
Windows Endpoint Introduction
Windows Server Side Attacks
Windows Client-Side Attacks
Windows Privilege Escalation
Windows Persistence
Linux Endpoint Introduction
Linux Server Side Attacks
Network Detections
Antivirus Alerts and Evasion
Network Evasion and Tunneling
Active Directory Enumeration
Windows Lateral Movement
Active Directory Persistence
SIEM Part One: Intro to ELK
SIEM Part Two: Combining the Logs
Exam
Exam Information
- The SOC-200 course prepares you for the OSDA certification
- Proctored
- The exam is divided into 10 phases, and each phase contains a number of attacker actions that must be detected, understood, and documented.
- You must achieve a minimum score of 75 points to pass the exam. There is a maximum of 100 points available on the exam.
BONUS! Cyber Phoenix Subscription Included: All Phoenix TS students receive complimentary ninety (90) day access to the Cyber Phoenix learning platform, which hosts hundreds of expert asynchronous training courses in Cybersecurity, IT, Soft Skills, and Management and more!
Phoenix TS is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints re-garding registered sponsors may be submitted to the National Registry of CPE Sponsors through its web site: www.nasbaregistry.org
![[GSA LOGO]](https://phoenixts.com/wp-content/themes/phoenixts-com/assets/images/gsa-logo-black.png){kind=logo}
