Performing CyberOps Using Cisco Security Technologies (SEDR)
Cisco
The Performing CyberOps Using Cisco Security Technologies (SEDR) course teaches you how to implement and use Cisco security technologies for threat detection, investigation, and response. You will learn to use Cisco SecureX, Cisco Secure Endpoint (AMP), Cisco Stealthwatch, and other Cisco security platforms to detect, investigate, and respond to cybersecurity threats in enterprise environments.
Who Should Attend
- Security operations centre (SOC) analysts
- Incident response engineers
- Security engineers
- Threat hunters
- Anyone pursuing CCNP Security certification
Prerequisites
- CCNA Security or equivalent knowledge
- Basic understanding of cybersecurity concepts
- Familiarity with network protocols and traffic analysis
What You Will Learn
- Describe the Cisco security portfolio for threat detection and response
- Use Cisco SecureX for unified security operations
- Implement and use Cisco Secure Endpoint (AMP) for endpoint protection
- Use Cisco Stealthwatch for network traffic analysis and anomaly detection
- Implement and use Cisco Threat Grid for malware analysis
- Use Cisco Umbrella Investigate for threat intelligence
- Perform threat hunting using Cisco security tools
- Conduct incident response using Cisco security platforms
- Automate threat response using Cisco SecureX orchestration
- Analyse and interpret security events and alerts
Course Outline
Labs & Practical Exercises
Hands-on labs using Cisco SecureX, Secure Endpoint, Stealthwatch, Threat Grid, and Umbrella Investigate to detect, investigate, and respond to simulated cybersecurity incidents. Participants will build automated response playbooks and conduct threat hunting exercises.
Certification & Assessment
Prepares candidates for the Cisco CCNP Security concentration exam (300-740 SEDR). Counts towards the CCNP Security certification.