The Blue Coat Certified Security Analytics Professional (BCSAP) course designed for participants who want to learn how to use the Blue Coat Security Analytics platform to perform virtually any type of network-based monitoring and forensic analysis, including incident-response investigation, real-time situational awareness, and continuous monitoring for indicators of compromise (IOCs) and advanced persistent threats (APTs). After completing this course, you will be able to:
- Map high-level operational functions to internal system modules and identify how data flows through the system
- Use reports and extractions to find and analyze relevant data to solve problems
- Use the Security Analytics platform for incident-response
- Use comparisons and advanced display filters to narrow search results
- Apply kill-chain analysis to discover and describe indicators of compromise
Duration / Format
Two days (16 hours), available as classroom instructor-led training (ILT) or virtual classroom training (VCT), and designed to be delivered subsequent to the two-day Security Analytics Administrator (BCSAA) course
Audience / Target Group
IT network or security professionals who want to master the use of Blue Coat Security Analytics and who have completed the Blue Coat Security Analytics Administrator course
Prerequisites
Participants should have a sound understanding of the OSI reference model and common networking protocols, and how those protocols make connections, keep state, and transfer data, along with basic experience with network packet and flow analysis, including the use of PCAP files, tcpdump, and Wireshark. Basic to advanced knowledge of best practices for incident response and continuous monitoring will provide a significant advantage.
Course Description and Contents
The Blue Coat Certified Security Analytics Professional (BCSAP) course covers:
- Theory of Operation
- File Extraction
- Data Enrichment
- Threat BLADES
- Kill Chain Analysis
- To Look for Indicators of Compromise (IOCs)
- Integration
- The Virtual File System (VFS)
Participants will become Blue Coat Certified Security Analytics Professionals upon completing the course and passing the Prometric online exam.
Please note that prices are in US Dollars.
