back

Cisco CyberOps Associate (200-201)

Detect, Analyze and Respond13 H 55 M

Just you? Training a whole team? There's an ITProTV plan that fits.

Start Training Today
This course has a practice test
Episodes
Episodes
  • Security Concepts
    • Overview
    • Describe the CIA Triad
    • Describe Security Approaches
    • Describe Security Tools and Practices
    • Describe Threat Actor Types
    • Differentiate Security Concepts
    • Identify Risk Management Methods
    • Describe CVSS Terminology
    • Compare Security Deployments
    • Compare Access Control Models
    • Identify Data Visibility Challenges
    • Identify Data Loss from Traffic Profiles
    • Use 5-tuple Approach to Isolate a Host
    • Compare Detection Methodologies
  • Security Monitoring
    • Compare Attack Surface and Vulnerability
    • Identify tcpdump and NetFlow
    • Identify Firewall Data
    • Identify Content Filtering Data
    • Identify Application Visibility and Control Data
    • Identify Technology Impact on Data Visibility
    • Know Network Security Data Types
    • Describe Network Attacks
    • Describe Web Application Attacks
    • Describe Social Engineering Attacks
    • Describe Evasion and Obfuscation
    • Identify Certificate Components
  • Host-Based Analysis
    • Describe Endpoint-based Attacks
    • Identify Windows 10 Components
    • Identify Ubuntu Components
    • Identify Attribution in an Investigation
    • Identify Types of Evidence based on Logs
    • Compare Disk Images
    • Interpret Output from a Malware Analysis Tool
  • Network Intrusion Analysis
    • Categorize Intrusion Events
    • Identify Source Technology and Events
    • Compare Firewall Operations
    • Compare Traffic Analysis Techniques
    • Extract Files from a TCP Stream
    • Identify Intrusion Elements from a PCAP file
    • Interpret Artifact Elements from an Event
    • Interpret Basic Regular Expressions
  • Security Policies and Procedures
    • Describe NIST SP 800-86 Concepts
    • Describe Security Management Concepts
    • Describe SOC Metrics and Scope Analysis
    • Identify Protected Data in a Network
    • Identify Network and Server Profiling Elements
    • Integrate Forensic Elements into Incident Analysis
    • Identify Elements of an IRP

Overview

8 M

itprotv course thumbnailitprotv course thumbnailitprotv course thumbnail
  • Episode Description
  • Transcript

This show will help aspiring or current IT professionals seeking the fulfill the job role as an entry or associate-level cybersecurity analyst. It will be valuable to the IT professional who desires to know more about cybersecurity operations in a SOC (Security Operations Center) and ultimately guide the certification seeker pursuing the Cisco Certified CyberOps Associate certification. You will learn about Security Concepts, Monitoring, host-based analysis, network intrusion analysis, and security policies and procedures used by a CyberOps Associate working within a SOC.

You're watching IT program TV. [MUSIC] >> Well, hello and thank you so much for joining us here in this IT pro TV very special course it's the cyber ops associate course. Here at IT Pro TV, and this is from Cisco Systems this, this whole exam are in certification around the cyber ops associate. And to get us kicked off, we want to tell you a bit about ourselves and about this course, and really some fun and very important facts about cyber ops associate So let's start with the gentleman to my right. He's a dear friend of mine. And I feel like I've known him for a decade even though it's just been a year but perhaps you do not know Ronnie Wong. Ronnie, how are you and tell us a bit about yourself. >> All right, Anthony. Thank you again for actually joining us on this as we get started here, right The Cisco cyber ops exam itself is something that I've actually taught before in the previous iteration on when they first introduced the CCNA cyber ops. So that's called the Cisco cyber ops associate that we've done. And I've actually earned a CCNA in security and of course CCNP in enterprise and I've been teaching concepts for Cisco for probably like 15 years now. So overall though, I'm fairly well versed in a lot of the actual things that we're actually going to be talking about and really enjoy being on actually interact with us as much as we can. >> I was going to ask you that question and you, you surrendered that information. Yeah, no, I was just really Curious about how long you've been teaching Cisco, I would have guessed that it's been, you know, at least 15 years so that's so impressive. I'm in the same boat with Ronnie been teaching Cisco for a very, very long time along with other disciplines just as Ronnie does and anything involving lately for me Security or cloud or DevOps I've been devouring because it just seems to me, those are the directions that the IT world is heading. And that's where I really want to be focusing. So I was thrilled when Ronnie asked if I would host this event with him because it's more great security content. Ronnie, a lot of students may be, you know, look, it's a very stressful time as we record this course. They may be really trying to figure out how to best spend their time. We're asking them to spend quite a bit of time with us in this show. What's in it for them? Would you say. >> Alright, so the great thing is if you already have some networking knowledge, you don't have to have a ton of it. But the great the nice thing is a Cisco certification is what you'll end up with. But also, of course in the realm of understanding more about cybersecurity, too. Now the goal behind this is if you find some job opening that actually advertises for, let's say a tier one in a SOC or a security Operation Center. This is what is supposed to do is to help you to actually be that type of data analysts. That is the front line of that defense and being able to identify Threats and being also of course, begin to initiate the process that helps us stop those things is key. So what we'll actually take a look at here of course is helping you to gain that understanding that knowledge and of course the resources and tools that are actually available for you. To learn a little bit more get into the industry as a level one known as entry level. And then of course you can actually take off from that point and learn more than you ever encountered. And you're actually on the direct front line of defending a company against some of the different cyber attacks that are out there. That is super exciting. I sure wish That I had started my IT career that way. It's sounds incredibly exciting. I was on the IBM helpdesk, troubleshooting ThinkPads all day. All right, so Ronnie, this is a, you know, this is a question I couldn't wait to ask you. So we know for the Cisco certifications, Cisco does a great job of providing for us these exam objectives. So they're really careful to just list out those specific exam objectives. And they publish those and our students can go up and access those for free Is that did you really structure the course in the categorizations and in the order that they did, For the most part? >> For a lot of it I did but there are some parts which I did kind of rearrange around to make at least logical order to me, So I also, of course, condense some of the different things that are out there that actually thought that needed more attention and actually kind of didn't emphasize some of the things that need that didn't need a lot of attention as well. Now, when it comes down to it, this core structure is really going to be where there's a lot of lecture, but instead of a traditional lecture like what you're seeing, actually see this interaction between Anthony and I is what will be going on. We talking about them in a more conversational manner, trying to actually get you to interact as well and you being the third person in the room, so we wanted to make sure it was that stuff. Now there are some times where you'll also of course, the demonstrations of some of the relevant technology and tools that you also need to at least understand and be familiar with, doesn't mean that we'll show you how that everything functions, but at least understand some of the things that you're looking for as well. So if we break down the course here, there's probably about I'm going to say 60% is going to be lecture and may about 40% is going to be of course show and tell, demonstrating and showing and then talking and trying to make sure that you're engaging with the material itself. >> I am more excited than ever because show and tell always been my favorite through school. All right, so, I heard that this is an 8 hour hands on practical exam, am I correct? >> That is not gonna be a correct one, there, now, Yeah, there is a CCIE that you're actually gonna be doing. But overall though, of course, we hope that you actually do earn towards your >> CCIE but this one will be kind of a straightforward question and answer type of exam as well but you do have to pay for it. So you'll register at Pearson VUE and a lot of times, especially in today's environment, you'll be able to take these directly from home as well. So it will cost you at least at this current time. $300 US dollars right now is what you actually see. And the question can range anywhere, let's say 60 to 72, maybe even 105 questions. So we don't have any real specific numbers that we can give you at this point. But just kind of realize that that's a part of you trying to learn, but we'll cover everything in the blueprint objectives like what Anthony has just mentioned. Make sure that you actually get the details as far as we can give them to you. >> Well, Ronnie, I know why I'm excited about this course, I'm just like I said rabidly consuming any education I get my hands on when it comes to cybersecurity. But if you were to say Ronnie, the one thing that most excites you about this particular, Version of cyber ops associate what would it be?. >> I like the fact that this is more of the entry level certification that we would hope to expect from any vendor that's out there. And what I mean by that is not it's not so challenging to the point where you're like, that shouldn't have been at a beginner level. This one really is focused in on helping you fulfill that job role. >> And the ideal behind this, and the course behind this, is to help you get used to that technology. So I like how practical it really is in terms of the knowledge and what they expect of you, as you enter that type of job. So there's nothing that's so extreme, out of the range where you're like, I can't believe that they would ask something like that Everything that we talked about during this course, will actually be something that more than likely you'll hear in some form or another different terminology but you'll hear about in some form or another and you actually be able to address it as you need to at least have the basis for you to get more self training as you need to as well. >> Well, I know as you heard, I am super excited. I'm sure many of our students out there Ronnie are super excited to jump in and get started. And that is so incredibly easy to do. You're just gonna take your mouse or your finger if you're on a touchscreen and you're gonna head to the next video where Ronnie and I'll start breaking down for you. All of these great cyber ops associate topics. Thank you so much for choosing ITPRO.TV. Thank you so much for your interest in cyber ops associate and we'll see you in the next video. [MUSIC] >> Thank you for watching ITPRO.TV