Operational cyber security / Basic

ANT0041

Monitoring cyber security events and incidents

Duration of training: 5 days

start date: Monday, November 17, 2025

sign up for a course

description
course

The material of this course will allow listeners to study the processes, techniques and tools for monitoring cyber security events and incidents. The course material also covers how to organize cyber security event and incident monitoring processes and how to integrate them into the overall corporate cyber security architecture.

course audience

Engineers dealing with monitoring and handling cyber security events and incidents; Engineers involved in digital forensics.

prerequisites

General cyber security knowledge at the ANT0000 course level is required. Additionally, knowledge of TCP/IP networks operations at the ANT-N101 course level, and knowledge of operating systems at the ANT-OW101 and ANT-OL101 are required.

how it works
education

online course

The online course involves group classes with an instructor via video conferencing, in addition, homework and an exam.

for corporate clients

training for corporate clients includes online and self-study courses, as well as additional services required by corporate clients: organizing training plans for client departments, assessing the effectiveness of training, etc.

teacher
course

program
course

• Classification of cyber attacks.
• Stages of cyber attack.
• Cyber attack artifacts and their correlation.
• Cyber security events and incidents.
• Monitoring processes.
• Monitoring tools and infrastructure.
• Operational metrics for monitoring.
• Logs and information about network activity.
• Collection and analysis of network traffic.
• Network activity statistics.
• Centralized and distributed network monitoring systems.
• Network monitoring system deployment and support.
• Windows monitoring and logging policies.
• Windows audit system.
• Windows monitoring deployment and support.
• Linux monitoring and log settings.
• Linux audit system.
• Linux monitoring deployment and support.
• Using flags and beacons in IT infrastructure for monitoring.
• Monitoring of SMTP.
• Monitoring of Web-applications.
• Monitoring of databases.
• Monitoring of cloud apps.
• Corporate cyber security architecture.
• Integrating monitoring systems.
• SIEM systems.
• Differentiating cyber security events and incidents.
• Confirming cyber security incidents.
• Processing cyber security incidents.
• Digital forensics.

Сourse purchase
options

individual

Cost — $1,550.00

Group online classes

Unlimited access to all the materials

Live webinars with teachers

Homework

Exam with certificate

Course dates:

pay for the course

corporate

Cost от $1,550.00

To obtain information about the final cost and clarify the date of the course, please fill out the form.

SUBMIT YOUR APPLICATION

* By clicking “send”, you agree to the Terms of Service And Privacy Policy