SANS courses

den2017nickden2017nick Member Posts: 10 ■■□□□□□□□□
Hi All,

Just looking for advice on what specific SANS courses can assist in the following areas of information security:

1. Application Security - web and other
2. General SecOps - SIEM and incident management

Appreciate it,
Denis

Comments

  • E Double UE Double U Member Posts: 1,654 ■■■■■■■■□□
    edited January 2019
    There are numerous options:

    https://www.sans.org/courses

    1. There are a bunch of DEV5xx courses that deal w/ apps as well as SEC542 and 642 that deal with web app pen testing.

    2. SEC455 and 555 deal with SIEM, SEC504 for incident handling, and a bunch more that are useful within Sec Ops (501, 503, 511). 

    FYI - I only have hands-on experience with 503, 504, 560, and 566. 
    Alphabet soup: CISSP, CCSP, CISM, CISA, GDSA, GPEN, GCIA, GCIH, GCCC, CEH, Azure Fundamentals, etc

    2020 goals: AZ-900, AZ-500, GDSA

    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
  • den2017nickden2017nick Member Posts: 10 ■■□□□□□□□□
    Thank you. That helps. So I am assuming that for someone that is looking towards starting on a SOC Analyst path would follow these:

    SEC455 SIEM Design & Implementation
    SEC501 Advanced Security Essentials - Enterprise Defender 
    SEC511 Continuous Monitoring and Security Operations
    SEC555 SIEM with Tactical Analytics

    Is that safe to assume?
  • E Double UE Double U Member Posts: 1,654 ■■■■■■■■□□
    Of those four I would say 501 and 511 would be beneficial. 504 was beneficial in my SOC experience, but not all SOCs are the same. 
    Alphabet soup: CISSP, CCSP, CISM, CISA, GDSA, GPEN, GCIA, GCIH, GCCC, CEH, Azure Fundamentals, etc

    2020 goals: AZ-900, AZ-500, GDSA

    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
  • den2017nickden2017nick Member Posts: 10 ■■□□□□□□□□
    No worries thank you
Sign In or Register to comment.