Cisco CyberOps Professional

JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+Surf City, USAAdmin Posts: 11,844 Admin
edited September 3 in Cisco CyberOps
Here is the page for the Cisco CyberOps Professional cert due to be released on November 17, 2020.

This a two-exam cert consisting of a core exam and a concentration exam. The first concentration exam to be made available is Forensic Analysis and Incident Response Using Cisco Technologies. Both exams can be taken at home or in a testing center.


Comments

  • thomas_thomas_ CompTIA N+/S+/L+ CCNA R&S CCNP R&S/Enterprise/Collab Member Posts: 949 ■■■■■■■□□□
    Interesting, I could have swore Cyber Ops wasn’t on the list for the new cert program.  
  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,844 Admin
    Ah, You hit upon the key!

    Old cert: CCNA "Cyber Ops"   (two words)
    New cert track: "CyberOps"  (one word)

    Clever, eh? ;)
  • yoba222yoba222 Senior Member Member Posts: 1,181 ■■■■■■■■□□
    edited September 3
    Yeah Cisco ninja-ed the name. I thought I had 2 CCNAs for about an entire year and when I went back to look at the pdf had a serious Mandela effect moment.

    This is interesting though. When I read Performing CyberOps Using Cisco Security Technologies, I'm put off by the idea of having to learn a bunch of specialized Cisco security appliance tools (or so I'd think).

    But then when I read the exam topics, stuff like
    • 4.2 Interpret basic scripts (for example, Python)
    • 4.3 Modify a provided script to automate a security operations task
    • 4.4 Recognize common data formats (for example, JSON, HTML, CSV, XML)

    well there are a lot of really good ones that appeal to me. Will have to give this one some serious thought.

    A+, Network+, CCNA, LFCS,
    Security+, eJPT, CySA+, PenTest+,
    Cisco CyberOps, GCIH, VHL,
    In progress: OSCP
  • chrisonechrisone Senior Member Member Posts: 2,103 ■■■■■■■■■□
    Looks cool. I don't see myself touching these. I see this track to fill in a gap that cisco security engineers have just managing Cisco security products.



    Certs: CISSP, OSCP, CRTP, eCPPT, eCIR, LFCS, CEH, AZ-900, VHL:Advanced+, Retired Cisco CCNP/SP/DP
    2020 Goals:
    Courses: VHL (completed), CQURE: Windows Security Crash Course (completed), BlackHills InfoSec: Breaching the Cloud (completed), eLearnSecurity: WAPTv3 (completed), IHRP (completed), THPv2 (completed), PTXv2 (Oct-Dec)
    Certs: VHL: Advanced+ (completed), OSCP (completed), AZ-500 (failed 1st attempt), eLearnSecurity: eWPT (failed 2x, no further attempts), eLearnSecurity: eCIR (complete), eLearnSecurity: eCTHPv2 (Mid-Sept), eLearnSecurity: eCPTXv2 (Dec)
  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,844 Admin
    Cisco certs have always been a sales tool for Cisco's products (i.e., goods and services). I expect the CyberOps certs to be the same. The CyberOps Expert cert will likely be intended to prove that a candidate can use Cisco's security products hands-on--much like the CCIE labs do now.
  • spiderjerichospiderjericho CCNA, CCNP Enterprise, CISSP, CASP, SEC+, Pentest+, CYSA+, CISA, CGEIT, CRISC, CISM, VCP 6.7 San DiegoRegistered Users, Member Posts: 852 ■■■■□□□□□□
    What’s the difference between the Cyber Ops and Security?

    One was supposed to be geared toward SOC type functions versus implementing security technologies on your network.
  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,844 Admin
    edited September 5
    You means the CCNA Security cert? Yes, that (now defunct) cert was mostly for the implementation and use of Cisco security products. "CyberOps" is security operations activities that are related directly to thw protection of information and information technology. CyberOps can certainly be performed without using any Cisco products, but not from Cisco's point of view. ;) 
  • spiderjerichospiderjericho CCNA, CCNP Enterprise, CISSP, CASP, SEC+, Pentest+, CYSA+, CISA, CGEIT, CRISC, CISM, VCP 6.7 San DiegoRegistered Users, Member Posts: 852 ■■■■□□□□□□
    No, I mean the CCNP and CCIE security. 

    Cyber Ops CAN be done with open source tools. So is the focus...CCIE Security, implement Cisco security technologies. CCIE Cyber Ops, use said technology to analyze the network and identify anamolous behavior that can lead to the detection of a bad guy?
  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,844 Admin
    edited September 8
    I not sure what you mean by "CCIE Cyber Ops." That's not on Cisco cert list. The Cisco CyberOps track will eventually include a "CyberOps Expert" cert that will have a separate lab component of some sort. 

    Anyway, Cisco certs are a training and sales tool for Cisco products, so I would always expect to see references to Cisco products on Cisco exams.
  • chrisonechrisone Senior Member Member Posts: 2,103 ■■■■■■■■■□
    edited September 8
    @spiderjericho , in regards to this track being ONLY opensource tools. Based on the syllabus for cert "Performing CyberOps Using Cisco Security Technologies v1.0 (CBRCOR 350-201)" it has a bunch of generalized topics and it doesn't seem to indicate anything in regards to Cisco products. However the name of the cert should be a warning that it WILL be focused on Cisco products. The cert title does say "USING Cisco Security Technologies." So right now I can't really identify or begin to have an idea of what to expect lol 

    The other exam "Conducting Forensic Analysis and Incident Response Using Cisco Technologies for CyberOps v1.0 (300-215)" The title of this exam states the same thing "USING, Cisco technologies." This time the syllabus DOES hint at several Cisco products, see below:

    2.5 Construct Python, PowerShell, and Bash scripts to parse and search logs or multiple data sources (such as, Cisco Umbrella, Sourcefire IPS, AMP for Endpoints, AMP for Network, and PX Grid)
    3.5 Recommend mitigation techniques for evaluated alerts from firewalls, intrusion prevention systems (IPS), data analysis tools (such as, Cisco Umbrella Investigate, Cisco Stealthwatch, and Cisco SecureX), and other systems to responds to cyber incidents
    3.11 Describe capabilities of Cisco security solutions related to threat intelligence (such as, Cisco Umbrella, Sourcefire IPS, AMP for Endpoints, and AMP for Network)

    It is really hard to tell how involved their products will be during these courses. I have some interest in the Expert course/cert, depending on how involved Cisco products are integrated and depending if its a CCIE or not. It seems to indicate that Expert certs are CCIE branded. 

    Always understand that if a company/brand is investing money on a product, in this case a certification track, you can bet its to educate, promote, and help sales of their brand and products in some sort of fashion. For Cisco to make certs based on other products and have nothing to do with their own products, I truly find that hard to believe. 

    My two cents. 
    Certs: CISSP, OSCP, CRTP, eCPPT, eCIR, LFCS, CEH, AZ-900, VHL:Advanced+, Retired Cisco CCNP/SP/DP
    2020 Goals:
    Courses: VHL (completed), CQURE: Windows Security Crash Course (completed), BlackHills InfoSec: Breaching the Cloud (completed), eLearnSecurity: WAPTv3 (completed), IHRP (completed), THPv2 (completed), PTXv2 (Oct-Dec)
    Certs: VHL: Advanced+ (completed), OSCP (completed), AZ-500 (failed 1st attempt), eLearnSecurity: eWPT (failed 2x, no further attempts), eLearnSecurity: eCIR (complete), eLearnSecurity: eCTHPv2 (Mid-Sept), eLearnSecurity: eCPTXv2 (Dec)
Sign In or Register to comment.