See how Insoft Services is responding to COVID-19

BCSAP – Blue Coat Certified Security Analytics Professional

X

Contact Us

We would love to hear from you. Please complete this form to pre-book or request further information about our delivery options.

Subscribe

I'd like to receive emails with the latest updates and promotions from Insoft.

Data Protection & Privacy

I hereby allow Insoft Ltd. to contact me on this topic. Further, I authorise Insoft Ltd. processing, using collecting and storing my personal data for the purpose of these activities. All your data will be protected and secured as outlined in our privacy policy.


Upcoming Courses

Oct 28 - Oct 29, 2020
09:00 - 17:00 (CEST)
Online

Feb 8 - Feb 9, 2021
09:00 - 17:00 (CEST)
Online

May 5 - May 6, 2021
09:00 - 17:00 (CEST)
Online

Aug 10 - Aug 11, 2021
09:00 - 17:00 (CEST)
Online

Nov 2 - Nov 3, 2021
09:00 - 17:00 (CEST)
Online

BCSAP – Blue Coat Certified Security Analytics Professional
2 days  (Instructor Led Online)  |  Network Security

Course Details

The Blue Coat Certified Security Analytics Professional (BCSAP) course covers:

  • Theory of Operation
  • File Extraction
  • Data Enrichment
  • Threat BLADES
  • Kill Chain Analysis
  • To Look for Indicators of Compromise (IOCs)
  • Integration
  • The Virtual File System (VFS)

 

See other courses available

Objectives

After completing the BCSAP course, you will be able to:

  • Map high-level operational functions to internal system modules and identify how data flows through the system
  • Use reports and extractions to find and analyze relevant data to solve problems
  • Use the Security Analytics Platform for incident-response
  • Use comparisons and advanced display filters to narrow search results
  • Apply kill-chain analysis to discover and describe indicators of compromise

Prerequisites

  • Participants should have a sound understanding of the OSI reference model and common networking protocols, and how those protocols make connections, keep state, and transfer data, along with basic experience with network packet and flow analysis, including the use of PCAP files, TCP dump, and Wireshark.
  • Basic to advanced knowledge of best practices for incident response and continuous monitoring will provide a significant advantage.