SOC (Security Operations Center) Analysts specializes in identifying and utilizing defensive skills and techniques, especially with today’s complex technical attacks, SOC Analysts are highly sought after in the Cybersecurity field. SOC Analysts mitigate and remedy the damages done by these technical exploits with proficient use of industry tools. This course will feature these tools and techniques in preparation to defend against the offensive approaches that are taught in our Pentester Prep course.
Our lead instructor, Tyrone E. Wilson, will be returning to his roots to do a deep dive look into the SOC structure within this workshop, as the defensive side is where it all began for him. With all the collected notes over the years of his experiences and accomplishments, he would like to give back to the cyber community by sharing his knowledge to successfully demonstrate the use of these tools and defensive techniques.
The ENTIRE CLASS will work as a team of SOC Analysts/Incident Responders that will address several scenarios. Before we begin, we drive home the fact that teamwork and constant communication is a must in order to be successful. The class must enumerate the current network environment to identify all of the hosts, ports, services, and vulnerabilities. As the class moves forward through these tasks we will begin to identify and talk about common threats, attacks, and vulnerability testing. As time progresses students will also identify SIEM tools such as Security Onion and Splunk.
Agenda Day 1
- SOC Analyst Fundamentals
- All Source Intelligence Gathering
- Wireshark Fundamentals
- Network Mapping & Monitoring
- Common Services, Threats, and Attacks
- IPv6 Overview
- Vulnerability Management
- IDS/IPS Tools
- Labs Part 1
Agenda Day 2
- Day 1 Review
- Incident Handling
- Incident Response
- Threat Hunting
- Labs Part 2
About the instructor
Tyrone E. Wilson
Founder / PResident
"I've been blessed to have a platform where I can use my expertise in cybersecurity to help provide a better future for others."
"We may never play in the NBA or NFL but there is nothing stopping us from being a CTO, CISO, etc."
"To anyone who ever considered giving up... DON'T"
Mr. Wilson is an information security professional with 22 years of experience in information technology and systems configuration, including information systems and network security. Wilson also has extensive knowledge in computer network defense, vulnerability assessments, cyber threat analysis, and incident response. As a former cybersecurity analyst for the United States Army, Wilson developed security structures to ensure American intelligence systems were protected from foreign threats. Currently, Wilson is the Founder and President of Cover6 Solutions, LLC; which teaches companies and professionals various aspects of information security, penetration testing, and IPv6.
Wilson is also the organizer of a 6,000+ person Information Security meetup group called The D.C. Cyber Security Professionals. In addition, Wilson is also on the Review Board of BSides NoVA and has recently presented and/or taught classes at major conferences and events such as BSides DC 2018, ISACA-GWDC Cybersecurity & Risk Conference, ISSA Mid Atlantic Security Conference, BSides NoVA 2017, BSides DC 2017, and DCCyberWeek 2017.More about Cover6 Solutions More about The D.C. Cyber Security Professionals