Book Image

Cisco Certified CyberOps Associate 200-201 Certification Guide

By : Glen D. Singh
Book Image

Cisco Certified CyberOps Associate 200-201 Certification Guide

By: Glen D. Singh

Overview of this book

Achieving the Cisco Certified CyberOps Associate 200-201 certification helps you to kickstart your career in cybersecurity operations. This book offers up-to-date coverage of 200-201 exam resources to fully equip you to pass on your first attempt. The book covers the essentials of network security concepts and shows you how to perform security threat monitoring. You'll begin by gaining an in-depth understanding of cryptography and exploring the methodology for performing both host and network-based intrusion analysis. Next, you'll learn about the importance of implementing security management and incident response strategies in an enterprise organization. As you advance, you'll see why implementing defenses is necessary by taking an in-depth approach, and then perform security monitoring and packet analysis on a network. You'll also discover the need for computer forensics and get to grips with the components used to identify network intrusions. Finally, the book will not only help you to learn the theory but also enable you to gain much-needed practical experience for the cybersecurity industry. By the end of this Cisco cybersecurity book, you'll have covered everything you need to pass the Cisco Certified CyberOps Associate 200-201 certification exam, and have a handy, on-the-job desktop reference guide.
Table of Contents (25 chapters)
1
Section 1: Network and Security Concepts
5
Section 2: Principles of Security Monitoring
9
Section 3: Host and Network-Based Analysis
14
Section 4: Security Policies and Procedures
21
Chapter 17: Mock Exam 1
22
Chapter 18: Mock Exam 2

Exploring the Cyber Kill Chain

Threats actors always have a motive for performing their cyber attacks and unleashing security threats on the internet. Cybersecurity professionals are always working to prevent those attacks and threats in their efforts to safeguard organizations and users around the world. To better prevent an attack, cybersecurity professionals also need to better understand the steps the threat actor is using to perform the attack. Therefore, if the cybersecurity professional is able to stop the attack at any of the critical steps the threat actor is performing, then overall, the attack will not be successful.

An American aerospace corporation by the name of Lockheed Martin developed a framework known as the Cyber Kill Chain. This framework contains a total of seven critical steps that a threat actor usually performs during a cyber attack. The Cyber Kill Chain has been widely adopted within the cybersecurity community to assist security professionals in identifying...