CyberOps Associate

Learn how to monitor, detect and respond to cyber threats and prepare for the Cisco Certified CyberOps Associate certification

Prepare for a career in a Security Operations Centre — develop the skills to detect, analyze, and respond to cybersecurity threats as an associate-level Cybersecurity Analyst.

CyberOps Associate covers the knowledge and skills needed to successfully handle the tasks and responsibilities of an associate-level Cybersecurity Analyst working in a Security Operations Centre (SOC). The course exposes learners to all the foundational knowledge required to detect, analyze, and escalate cybersecurity threats using common open-source tools. Topics span from Windows and Linux operating systems and network protocols through to threat intelligence, cryptography, endpoint protection, network security monitoring, alert evaluation, and digital forensics and incident response. Hands-on labs use virtual machines including the CyberOps Workstation VM and Security Onion. The course prepares candidates for the Cisco Certified CyberOps Associate (200-201 CBROPS) certification exam.

Curriculum Chapters

  • 1. The Danger
  • 2. Fighters in the War Against Cybercrime
  • 3. The Windows Operating System
  • 4. Linux Overview
  • 5. Network Protocols
  • 6. Ethernet and Internet Protocol (IP)
  • 7. Connectivity Verification
  • 8. Address Resolution Protocol
  • 9. The Transport Layer
  • 10. Network Services
  • 11. Network Communication Devices
  • 12. Network Security Infrastructure
  • 13. Attackers and Their Tools
  • 14. Common Threats and Attacks
  • 15. Observing Network Operation
  • 16. Attacking the Foundation
  • 17. Attacking What We Do
  • 18. Understanding Defense
  • 19. Access Control
  • 20. Threat Intelligence
  • 21. Cryptography
  • 22. Endpoint Protection
  • 23. Endpoint Vulnerability Assessment
  • 24. Technologies and Protocols
  • 25. Network Security Data
  • 26. Evaluating Alerts
  • 27. Working with Network Security Data
  • 28. Digital Forensics and Incident Analysis and Response

Skills You Will Learn

Explain the role of the Cybersecurity Operations Analyst and the mission of the SOC. Explain Windows and Linux OS features and security characteristics needed for cybersecurity analysis. Analyze network protocol operations, IP addressing, ARP, transport layer, and network services. Explain how network devices and security infrastructure enhance network security. Classify threat actor tools, malware types, and common network attacks. Use network monitoring tools to identify attacks against network protocols and services. Explain defense-in-depth strategy, access control, and AAA. Evaluate threat intelligence sources and services. Explain cryptographic techniques including hashing, digital signatures, and PKI. Analyze endpoint vulnerabilities using CVSS and endpoint security tools including Security Onion. Explain how security technologies affect security monitoring. Use log data and network security data platforms to support security monitoring. Evaluate and classify security alerts. Apply NIST 800-61r2 incident response procedures and digital forensic techniques to security incidents.

Technologies Used

CyberOps Workstation VM (Arch Linux / Mininet)
Security Onion VM (ELK stack)
Oracle VM VirtualBox
Cisco Packet Tracer
Wireshark & open-source security tools

Course Details

Course Type: Instructor-led
Time: 70 Hours
Modules: 28
Labs: 52 hands-on labs (~30 hours) using VMs & Cisco Packet Tracer

Prerequisites

Basic Windows and Linux knowledge, basic networking concepts, and familiarity with Cisco Packet Tracer recommended. Completing the Junior Cybersecurity Analyst Career Path or equivalent is beneficial.

Certification & Career

Career and Certification alignment: This course aligns with the Cisco Certified CyberOps Associate certification (exam 200-201 CBROPS). It prepares learners for associate-level SOC roles including Cybersecurity Analyst, SOC Analyst, and Incident Responder. Learners who complete the course receive a discount voucher for the certification exam. Recommended next courses: CCNP Enterprise, Network Security.

Achievements & Badges

Upon completion, earn a Cisco Networking Academy digital badge. Share your verified achievement on LinkedIn, your CV, or professional profile.

What Cisco verifies: Cisco verifies the earner of this badge successfully completed the CyberOps Associate course. The holder of this student-level credential has a broad understanding of Security Operations. They developed problem-solving skills to detect and analyze intrusions and monitor the network by completing up to 30 hours of 52 hands-on labs using virtual machines (Security Onion – ELK) and/or Cisco Packet Tracer.