SANS courses

den2017nickden2017nick Member Posts: 10 ■■■□□□□□□□
in CEH
Hi All,

Just looking for advice on what specific SANS courses can assist in the following areas of information security:

1. Application Security - web and other
2. General SecOps - SIEM and incident management

Appreciate it,
Denis
· Share on FacebookShare on Twitter

Comments

  • E Double UE Double U Member Posts: 2,233 ■■■■■■■■■■
    edited January 2019
    There are numerous options:

    https://www.sans.org/courses

    1. There are a bunch of DEV5xx courses that deal w/ apps as well as SEC542 and 642 that deal with web app pen testing.

    2. SEC455 and 555 deal with SIEM, SEC504 for incident handling, and a bunch more that are useful within Sec Ops (501, 503, 511). 

    FYI - I only have hands-on experience with 503, 504, 560, and 566. 
    Alphabet soup from (ISC)2, ISACA, GIAC, EC-Council, Microsoft, ITIL, Cisco, Scrum, CompTIA, AWS
    · Share on FacebookShare on Twitter
  • den2017nickden2017nick Member Posts: 10 ■■■□□□□□□□
    Thank you. That helps. So I am assuming that for someone that is looking towards starting on a SOC Analyst path would follow these:

    SEC455 SIEM Design & Implementation
    SEC501 Advanced Security Essentials - Enterprise Defender 
    SEC511 Continuous Monitoring and Security Operations
    SEC555 SIEM with Tactical Analytics

    Is that safe to assume?
    · Share on FacebookShare on Twitter
  • E Double UE Double U Member Posts: 2,233 ■■■■■■■■■■
    Of those four I would say 501 and 511 would be beneficial. 504 was beneficial in my SOC experience, but not all SOCs are the same. 
    Alphabet soup from (ISC)2, ISACA, GIAC, EC-Council, Microsoft, ITIL, Cisco, Scrum, CompTIA, AWS
    · Share on FacebookShare on Twitter
  • den2017nickden2017nick Member Posts: 10 ■■■□□□□□□□
    No worries thank you
    · Share on FacebookShare on Twitter
Sign In or Register to comment.