Blue Team Analyst

Learn how to monitor for IS incidents, detect threats, eliminate false positives, and perform initial
incident response.

Level: Basic

Register Now
In collaboration with

Blue team analysts are specialists with a wide range of complex goals. Their role is to monitor for threats, quickly determine whether an incident is genuine, and enrich processes with TI. They do so with lightning efficiency thanks to their knowledge of the fundamentals of the incident response and remediation processes, including threat hunting, network forensics, and malware detonation. Such a comprehensive knowledge base is invaluable when handling emergencies.

Blue teams also possess an in-depth knowledge of the threat landscape, which they monitor and where they collect valuable information and indicators of compromise. By keeping up to date with the latest trends, the specialists help companies handle passive and active threats quicker and more effectively.

Group-IB’s three-day course addresses each of the above-mentioned functions of a Blue Team
member.

Key Topics

  • Basics of security management and SOC operations
  • Overview of cybersecurity solutions
  • Monitoring and detection: signatures and rules
  • Incident response: network and host analysis
  • Fundamentals of malware analysis
  • Basics of threat intelligence and threat hunting

Format

  • Online
  • Onsite (on request only)

Duration

  • 3 days
  • 6 hours per day

Requirements

  • A basic understanding of security controls and solutions
  • A basic understanding of modern cyber threats
  • Some experience in the field of cybersecurity and CTI

Skills Acquired

  • Knowledge how to monitor all solutions and ensure that the organization is secure
  • Ability to quickly assess security incidents and determine the main features of a cyberattack
  • Ability to support threat intelligence and threat hunting processes

Register for the Blue Team Analyst Course

We're here to help you on your learning journey. Fill out the form given below to register for the program.