Security operations
Prepare analysts to detect, investigate and escalate.
SOC-oriented training for learners and operational teams covering monitoring, SIEM workflows, alert triage, investigation, incident coordination and reporting.
Programme scope
What the soc & incident response engagement can cover.
- SOC roles, tiers and workflows
- Logs, events and telemetry sources
- SIEM concepts and use cases
- Alert validation and false-positive handling
- Investigation workflow and evidence handling
- Incident classification and escalation
- Phishing, endpoint and network scenarios
- Reporting, lessons learned and playbooks
Who it is for
Adapted to role and maturity
Suitable for colleges, universities, organisations, departments and teams. The final scope is adjusted to participant experience, learning goals and available time.
Delivery: awareness session, workshop, multi-day programme, consulting engagement or blended format.
Engagement formats
Choose a format that matches the expected outcome.
Possible deliverables
What may be included in the agreed scope.
- Scenario-based exercises
- Triage checklist
- Escalation and reporting templates
- Sample playbook structure
- Assessment and feedback, when agreed
Define outcome
Agree audience, objectives, duration and expected deliverables.
Customise
Adapt examples, depth and exercises to the environment.
Deliver & enable
Conduct the engagement and provide agreed action guidance.
Start a conversation
Plan a soc & incident response engagement for your institution.
Tell us your audience, goals and preferred delivery format. We will propose a focused engagement for your college or organisation.