SEC511 focuses on building and enhancing continuous monitoring and security operations capabilities to detect, analyze, and respond to threats effectively. This course teaches participants how to implement advanced monitoring strategies, leverage Security Information and Event Management (SIEM) systems, and utilize network traffic analysis tools for real-time threat detection. Topics include incident detection, threat hunting, forensic investigation, and operationalizing threat intelligence. Through hands-on labs and case studies, students will gain the skills to develop robust monitoring solutions, automate workflows, and strengthen an organization’s security operations center (SOC) to address evolving cyber threats proactively.
- Current State Assessment and Security Architecture
- Network Security Architecture
- Network Security Monitoring
- Endpoint Security Architecture
- Automation and Continuous Security Monitoring
- Capstone: Design, Detect, Defend
