(CBRCOR) Performing CyberOps Using Cisco Security Technologies
Advance your cybersecurity skills with CBRCOR training. Gain expertise in automation, incident response, and threat analysis for effective SOC performance.
Duration
5 days
Version
1.1
CE Credits
40
The Cisco Continuing Education Program enables you to renew your certifications while exploring new learning paths and enhancing your skillset. It's a convenient way to stay certified without retaking exams. Click here to learn more.
CLCs
40
Cisco Learning Credits (CLCs) are prepaid training vouchers that can be used as investment into your knowledge. You can attend NIL Learning’s trainings and pay with CLCs. Click here to learn more.
By default, our instructors deliver the courses remotely in real time in English. On-premise delivery and other languages available on request.
Dates and Prices
| Date | Language | Location | Price Select currency |
|
|---|---|---|---|---|
|
30.03.2026 - 03.04.2026 |
English |
Online, GMT+2 |
2880 € 2910 $ 2510 £ |
Book now |
|
10.08.2026 - 14.08.2026 |
English |
Online, GMT+2 |
2880 € 2910 $ 2510 £ |
Book now |
|
25.01.2027 - 25.01.2027 |
English |
Online, GMT+1 |
2880 € 2910 $ 2510 £ |
Book now |
| All prices exclude VAT. |
All prices exclude VAT.
Cisco Learning Credits (CLCs) are prepaid training vouchers that can be used as investment into your knowledge. You can attend NIL Learning’s trainings and pay with CLCs. Click to learn more.
Course Overview
The Performing Cybersecurity Using Cisco Security Technologies (CBRCOR) training guides you through cybersecurity operations fundamentals, methods, and automation. The knowledge you gain in this training will prepare you for the role of Information Security Analyst on a Security Operations Center (SOC) team. You will learn foundational concepts and their application in real-world scenarios, and how to leverage playbooks in formulating an Incident Response (IR). The training teaches you how to use automation for security using cloud platforms and a SecDevOps methodology. You will learn the techniques for detecting cyberattacks, analyzing threats, and making appropriate recommendations to improve cybersecurity.
This training prepares you for the 350-201 CBRCOR exam. If passed, you earn the Cisco Certified Specialist – Cybersecurity Core certification and satisfy the core exam requirement for the Cisco Certified Cybersecurity Professional certification. This training also earns you 40 Continuing Education (CE) credits toward recertification.
This training will help you:
- Develop essential cybersecurity skills in SOC operations, threat detection, and incident response through real-world labs and scenarios
- Gain hands-on experience with leading security tools such as Cisco XDR, Splunk Phantom, and Firepower NGFW
- Learn automation and SecDevOps practices to improve efficiency and effectiveness in security operations
- Prepare for the 350-201 CBRCOR exam
- Earn 40 CE credits toward recertification
Welcome to Your Path to Mastery!
Hey! Ready to learn and grow? I'm here to help you every step of the way!
Welcome aboard! This course is tailored to empower you with the knowledge and skills you need. We'll make learning engaging and fun, turning your challenges into achievements. Let's get started on your amazing journey!
Robert Lesar
Lead Instructor
Objectives
Gain expert IT skills with NIL Learning: Benefit from our blend of theory and practical experience. Enhance your growth with insights into current and future tech trends. Choose us for cutting-edge Cisco training and more, taught by field-proven experts to maximize your training investment.
- Describe the types of service coverage within a SOC and operational responsibilities associated with each
- Compare security operations considerations of cloud platforms
- Describe the general methodologies of SOC platforms development, management, and automation
- Describe asset segmentation, segregation, network segmentation, microsegmentation, and approaches to each, as part of asset controls and protections
- Describe Zero Trust and associated approaches, as part of asset controls and protections
- Perform incident investigations using Security Information and Event Management (SIEM) and/or security orchestration and automation (SOAR) in the SOC
- Use different types of core security technology platforms for security monitoring, investigation, and response
- Describe the DevOps and SecDevOps processes
- Describe the common data formats (e.g., JavaScript Object Notation (JSON), HTML, XML, and Comma-Separated Values (CSV))
- Describe API authentication mechanisms
- Analyze the approach and strategies of threat detection, during monitoring, investigation, and response
- Determine known Indicators of Compromise (IOCs) and Indicators of Attack (IOAs)
- Interpret the sequence of events during an attack based on analysis of traffic patterns
- Describe the different security tools and their limitations for network analysis (for example, packet capture tools, traffic analysis tools, network log analysis tools)
- Analyze anomalous user and entity behavior (UEBA)
- Perform proactive threat hunting following best practices
Who should enroll?
Although there are no mandatory prerequisites, the course is particularly suited for the following audiences:
- Cybersecurity engineers
- Cybersecurity investigators
- Incident managers
- Incident responders
- Network engineers
- SOC analysts currently functioning at entry level with a minimum of 1 year of experience
Course benefits:
Get expert knowledge
Our learning programs are designed and led by expert IT engineers, consultants, and instructors. We constantly implement participants’ feedback to improve courses.
Our experiences build your competencies
With 30+ years of experience, we’ve been on the market as long as Cisco. Our understanding of IT systems and industry job demands gives us the insight to guide you toward becoming a world-class expert yourself.
Rise above the industry average
Cisco courses are intended not only for passing the certification exam but also for developing your skills and rising above the industry average. Our instructors provide guidance and references that allow you to grow into a confident and competent professional.
Retain the knowledge longer
Our in-depth, non-interrupted learning program ensures you understand the bigger picture and retain the knowledge long term. It also reduces the risk of information loss and confusion.
Learn from the best in Cisco technologies
Our IT consultants-turned-instructors have years of experience and dedicate time to listening and interacting with participants within the course content. Their hands-on project involvement brings practical expertise to our learning programs.
Have peace of mind
We deliver on our promise and schedule. Rest assured, our instructors will give you knowledge, information, hints, and practical experiences around specific topics. Based on a global survey conducted by Cisco, NIL Learning instructors enjoy an average score of 4.78 out of 5.
Be ahead of the curve
As Cisco Platinum Learning Partner and technical community member, we create learning content for major technological vendors. NIL Learning is among the first to offer high-quality learning and training courses in Cisco Technologies.
Get more from a training
Our instructors deliver the courses with practical and useful examples from real-life situations. All NIL Learning instructors are field-proven experts – each both an active engineer and instructor.
Courses delivered by experts for experts in the making.
Among the first to offer training on newly arrived Cisco technologies
Part of Conscia, leading European IT solutions and services provider
A tech powerhouse with 30+ years of training & field experience
Industry-acclaimed, broadly expertised, and technically proficient
Connecting you with future trusted industry advisors
Course Outline
- Understanding Risk Management and SOC Operations
- Understanding Analytical Processes and Playbooks
- Understanding Cloud Service Model Security Responsibilities
- Understanding Enterprise Environment Assets
- Understanding APIs
- Understanding SOC Development and Deployment Models
- Investigating Packet Captures, Logs, and Traffic Analysis
- Investigating Endpoint and Appliance Logs
- Implementing Threat Tuning
- Threat Research and Threat Intelligence Practices
- Performing Security Analytics and Reports in a SOC
- Malware Forensics Basics
- Threat Hunting Basics
- Performing Incident Investigation and Response
Lab Outline
- Explore Cisco XDR
- Explore Splunk Phantom Playbooks
- Evaluate Assets in a Typical Enterprise Environment
- Fix a Python API Script
- Create Bash Basic Scripts
- Examine Cisco Firepower Packet Captures and PCAP Analysis
- Validate an Attack and Determine the Incident Response
- Submit a Sample to Cisco Secure Malware Analytics for Analysis
- Endpoint-Based Attack Scenario Referencing MITRE ATTACK
- Explore Cisco Firepower NGFW Access Control Policy and Snort Rules
- Investigate IOCs using Cisco XDR
- Explore the ThreatConnect Threat Intelligence Platform
- Track the TTPs of a Successful Attack Using a TIP
- Reverse Engineer Malware
- Perform Threat Hunting
- Conduct an Incident Response
Prerequisite Knowledge
There are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are:
- Familiarity with UNIX/Linux shells (bash, csh) and shell commands
- Familiarity with the Splunk search and navigation functions
- Basic understanding of scripting using one or more of Python, JavaScript, PHP or similar.
Recommended Cisco offerings that may help you prepare for this course:
Why NIL?
Global Leading Provider of Cisco Courses
30+ years of experience
Since 1992, NIL has been at the forefront of advanced contributors to strategic partner Cisco technologies, learning curriculum and value-added solutions deployed to clients around the globe.
Learn more about us
Instructor can clear your doubts
It was a very good experience. Instructor (Mr. Ayman) can clear your doubts in a very easy way that gives you more information. Very much recommended for upcoming training sessions.
One of the best instructors
The instructor (Lipski) is one of the best I’ve had the opportunity to train with. He is excellent.
Very insightful knowledge and explanations
The material (of the training) is well structured in a way that difficult topics are simplified and easy to understand. (Alex as a) trainer was excellent, it makes a difference when the trainer is highly experienced and has a lot of practical examples to reference, which enhances the learning. A big thanks to instructor (Alex) on this training, his knowledge and explanations were very insightful.
Clear delivery of content
Instrcuctor (Robert) was great. Knowledgeable and clear delivery of the content, Very patient and informative.
Emphasizing the pros of the product
The trainer was really good. No-nonsense, funny, realistic, and not talking about how good Cisco is and how bad the competitors are. Really emphasizing the pros of the product instead of the cons of the competitors.