Security Operations Center (SOC) analysts investigate threats, track down attackers, and protect critical systems. Most SOCs rely on Splunk Enterprise Security as their go-to tool for finding and investigating threats. The Cybersecurity Defense Analyst Career Path teaches you the core skills every SOC analyst needs, and how to use the security platform trusted by organizations around the world. Across 8 courses, you will start with the basics of cybersecurity and work your way up to threat hunting using Splunk Enterprise Security. By the end, you will be ready for the Splunk Certified Cybersecurity Defense Analyst certification — validating that you can use Splunk’s tools to investigate security events, detect attacks, and respond to incidents. Developed in collaboration with Splunk, this career path is a great way to build hands-on SOC analyst skills and stand out in the job market.
Career Path Outline
- Course 1 — The Cybersecurity Landscape
Start your journey to becoming a SOC Analyst. Learn core cybersecurity concepts that defend organizations against modern threats. - Course 2 — Understanding Threats and Attacks
Learn to think like an attacker and defend like a pro. Master cyber threats, tactics, and industry-standard security frameworks. - Course 3 — Security Operations and the Defense Analyst
Step into the SOC and learn what it takes to become a cybersecurity defense analyst, with real insights from security professionals. - Course 4 — Introduction to Splunk
Learn to search, analyze, and visualize data with Splunk. No experience needed. Build skills employers want. - Course 5 — Data and Tools for Defense Analysts
Learn the tools and data sources SOC analysts use to detect and respond to cybersecurity threats effectively. - Course 6 — The Art of Investigation
Step into the SOC and master real-world security investigations through ride-alongs with expert analysts using Splunk. - Course 7 — SOC Essentials: Investigating with Splunk
Master threat investigation with Splunk Enterprise Security. Learn to detect, analyse, and respond to cybersecurity threats. - Course 8 — SOC Essentials: Introduction to Threat Hunting
Learn to proactively hunt for hidden cyber threats before they strike. Master the PEAK Framework with hands-on Splunk exercises. - Exam — Cybersecurity Defense Analyst Pathway Exam
Test your knowledge on content from the entire career path and earn a digital badge to verify your skills.
Skills You Will Build
Understand attacks including malware, ransomware, and phishing using the MITRE ATT&CK framework. Use Splunk Enterprise Security dashboards and features to investigate security findings. Write SPL search queries to find threats in security logs and network data. Follow evidence, analyze attack patterns, and classify security findings. Read firewall logs, endpoint data, network traffic, and cloud security information. Search for hidden attackers using pattern detection and behavioral analysis. Handle security tickets, escalate incidents, and work effectively with security teams. Prioritize threats and understand core security principles to protect organizations from cyber attacks.
Target Roles
SOC Analyst, Security Operations Analyst, Threat Detection Analyst, Incident Response Analyst, Cybersecurity Analyst, Threat Hunter
Career Path Details
Time: 30 Hours
Courses: 8
Level: Intermediate
Cost: Free
Format: Self-paced online
Language: English
Prerequisites
Completion of the CCST Cybersecurity certification or equivalent knowledge is recommended. No prerequisite exams are required for the Splunk certification exam, but Power User level knowledge of Splunk Enterprise is recommended.
Certification & Career
After completing this career path, you are ready to sit the Splunk Certified Cybersecurity Defense Analyst certification exam. This intermediate-level certification validates your ability to detect, analyze, and combat cyber threats using Splunk Enterprise and Enterprise Security.
Exam code: SPLK-5001
Duration: 57 minutes
Questions: 57 multiple choice
Price: US$130
Delivery: Pearson VUE
Prerequisites: None required
Next step: Splunk Certified Cybersecurity Defense Engineer
Splunk Enterprise Security has been recognized as a Leader in the Gartner® Magic Quadrant™ for SIEM for eleven consecutive years — making this certification actively sought after by employers hiring for SOC analyst roles worldwide.