See how Insoft Services is responding to COVID-19

SCYBER – Securing Cisco Networks with Threat Detection and Analysis 1.0


Contact Us

We would love to hear from you. Please complete this form to pre-book or request further information about our delivery options.


I'd like to receive emails with the latest updates and promotions from Insoft.

Data Protection & Privacy

I hereby allow Insoft Ltd. to contact me on this topic. Further, I authorise Insoft Ltd. processing, using collecting and storing my personal data for the purpose of these activities. All your data will be protected and secured as outlined in our privacy policy.

SCYBER – Securing Cisco Networks with Threat Detection and Analysis 1.0
5 days  (Instructor Led Online)  |  Network Security

Course Details

The SCYBER – Securing Cisco Networks with Threat Detection and Analysis v1.0 course is an instructor-led training offered by Learning Services High-Touch Delivery. This lab-intensive training course prepares you to take the Cyber Security Specialist Certification exam and to hit the ground running as a security analyst team member.

The course combines lecture materials and hands-on labs throughout to make sure that you are able to successfully understand cybersecurity concepts and to recognize specific threats and attacks on your network. This course is designed to teach you how a network Security Operations Center (SOC) works and how to begin to monitor, analyze, and respond to security threats within the network. The job role for a security analyst will vary from industry to industry and differ in the private sector versus the public sector.


Associated Certification:

This course is part of the following Certifications:


The corresponding exam 600-199 SCYBER has been retired on July 27, 2018. See the CCNA Cyber Ops certification or the other Cisco courses available.


Upon completion of this course, you should have obtained four major areas of competency:

  • Monitor security events
  • Configure and tune security event detection and alarming
  • Analyze traffic for security threats
  • Respond appropriately to security incidents


  • Overview of Network Security and Operations
  • Network and Security Operations Data Analysis
  • Packet Analysis
  • Network Log Analysis
  • Baseline Network Operations
  • Preparing for Security Incidents
  • Detecting Security Incidents
  • Investigating Security Incidents
  • Reacting to an Incident
  • Communicating Incidents Effectively
  • Postevent Activity

The lab outline is as follows:

  • Lab 1: Assess Understanding of Network and Security Operations
  • Lab 2: Assess Understanding of Network and Security Data Analysis
  • Lab 3: Network and Security Data Analysis Team-Building Activity
  • Lab 4: Packet Capture Exercise 1
  • Lab 5: Packet Capture Exercise 2
  • Lab 6: Packet Capture Exercise 3
  • Lab 7: Understanding Log Data
  • Lab 8: Correlation Lab
  • Lab 9: Assessing Understanding
  • Lab 10: Mapping a Monitored Network Topology
  • Lab 11: Assessing Normal Behaviors of a Monitored Network
  • Lab 12: Assessing Current Security Controls
  • Lab 13: Assessing Current Monitoring System
  • Lab 14: Manually Correlating Events
  • Lab 15: Automatically Correlating Events
  • Lab 16: Identifying a Security Incident
  • Lab 17: Understanding NetFlow
  • Lab 18: NetFlow Practical Activity
  • Lab 19: Assessing Understanding
  • Lab 20: Selecting Mitigations
  • Lab 21: Developing Mitigations
  • Lab 22: Documenting Incidents
  • Lab 23: Recommending Remediation
  • Lab 24: Improving Security
  • Lab 25: Incident Response Challenge Lab

Target Audience

  • This course is designed for technical professionals who need to know how to monitor, analyze, and respond to network security threats and attacks.



Following is the recommended prerequisite training for this course:

  • Standard CCNA certification as a minimum with CCNA Security a plus
  • Basic Cisco IOS Software switch and router configuration skills