Network Monitoring and Intrusion Detection
Network Monitoring & Intrusion Detection
Network Monitoring & Intrusion Detection is the monitoring of network and system activity to identify unauthorised actions by users or potential intrusion by an attacker.
Network Monitoring and Intrusion Detection work has many technical aspects, some of which overlap significantly with other cyber security roles and career paths.
​
Core to the role is watching for unusual or unauthorised activity on systems and networks. Much of this can be done through intrusion detection and prevention tools but you apply good technical skills to manage these and to interpret what they tell you. There is always the
On the program learners will receive knowledge and skills relating to the following areas:
-
Intrusion Detection and Analysis
-
Malware Analysis
-
Incident Management
-
Incident Planning
-
Incident Response
-
Forensic Investigation
-
Advanced Persistent Threats
-
SOC Analysis
risk that such tools may be insufficient, so you remain alert to any unusual events. You think on your feet.
​
Depending on the size of your organisation, you may work with other teams such as the Security Engineering team (to tune and enhance the detection technologies) and the Cyber Threat Intelligence team (to work out where to focus your efforts). Whatever the structure around you, you always keep your own skills and knowledge up to date.
In most large organisations, you work in a Security Operations Centre (SOC) or a Network Operations Centre (NOC).
Entry Level Program
Learners will receive...
Practitioner Level Program
Learners will receive...
-
Coming soon...
-
Coming soon...