Be job-ready for cybersecurity operations roles with Cisco CCNP – Cybersecurity credential.

Cybersecurity operations teams are the front line of defense in protecting and defending against cyber attacks. But cybersecurity threats seem to evolve faster every day. The Cisco Certified CyberOps training and certification program prepares you with the knowledge, skills, and hands-on practice you need to safeguard your organization’s digital assets.

This CBRCOR: Performing CyberOps Using Cisco Security Technologies course teaches you security concepts, common network and application operations and attacks, and the types of data needed to investigate security incidents.

Overview

The Performing CyberOps Using Cisco Security Technologies (CBRCOR) v1.0 course guides you through cybersecurity operations fundamentals, methods, and automation.

  • The knowledge you gain in this course will prepare you for the role of Information Security Analyst on a Security Operations Center (SOC) team.
  • You will learn foundational concepts and their application in real-world scenarios, and how to leverage playbooks in formulating an Incident Response (IR).
  • The course teaches you how to use automation for security using cloud platforms and a SecDevOps methodology.
  • You will learn the techniques for detecting cyberattacks, analyzing threats, and making appropriate recommendations to improve cybersecurity.

This course also earns you 40 Continuing Education (CE) credits towards recertification and prepares you for the 350-201 CBRCOR core exam.

Skills Covered

After taking this course, you should be able to:

  • Describe the types of service coverage within a SOC and operational responsibilities associated with each.
  • Compare security operations considerations of cloud platforms.
  • Describe the general methodologies of SOC platforms development, management, and automation.
  • Explain asset segmentation, segregation, network segmentation, micro-segmentation, and approaches to each, as part of asset controls and protections.
  • Describe Zero Trust and associated approaches, as part of asset controls and protections.
  • Perform incident investigations using Security Information and Event Management (SIEM) and/or security orchestration and automation (SOAR) in the SOC.
  • Use different types of core security technology platforms for security monitoring, investigation, and response.
  • Describe the DevOps and SecDevOps processes.
  • Explain the common data formats, for example, JavaScript Object Notation (JSON), HTML, XML, Comma-Separated Values (CSV).
  • Describe API authentication mechanisms.
  • Analyze the approach and strategies of threat detection, during monitoring, investigation, and response.
  • Determine known Indicators of Compromise (IOCs) and Indicators of Attack (IOAs).
  • Interpret the sequence of events during an attack based on analysis of traffic patterns.
  • Describe the different security tools and their limitations for network analysis (for example, packet capture tools, traffic analysis tools, network log analysis tools).
  • Analyze anomalous user and entity behavior (UEBA).
  • Perform proactive threat hunting following best practices.

Prerequisites

Although there are no mandatory prerequisites, to fully benefit from this course, you should have the following knowledge:

  • Familiarity with UNIX/Linux shells (bash, csh) and shell commands.
  • Familiarity with the Splunk search and navigation functions
  • Basic understanding of scripting using one or more of Python, JavaScript, PHP or similar.

Recommended Cisco offering that may help you prepare for this course:

Target Audience

Although there are no mandatory prerequisites, the course is particularly suited for the following audiences:

  • Cybersecurity engineer
  • Cybersecurity investigator
  • Incident manager
  • Incident responder
  • Network engineer
  • SOC analysts currently functioning at entry level with a minimum of 1 year of experience

Course Curriculum

Module 1: Understanding Risk Management and SOC Operations
Module 2: Understanding Analytical Processes and Playbooks
Module 3: Investigating Packet Captures, Logs, and Traffic Analysis
Module 4: Investigating Endpoint and Appliance Logs
Module 5: Understanding Cloud Service Model Security Responsibilities
Module 6: Understanding Enterprise Environment Assets
Module 7: Implementing Threat Tuning
Module 8: Threat Research and Threat Intelligence Practices
Module 9: Understanding APIs
Module 10: Understanding SOC Development and Deployment Models
Module 11: Performing Security Analytics and Reports in a SOC
Module 12: Malware Forensics Basics
Module 13: Performing Incident Investigation and Response

Dates & Locations

Let’s make it work for you

Can’t find a date that fits? Need to train your whole team? Looking for a discount?
Speak to one of our learning experts today.

x Clear all selections

August 3, 2026 - August 7, 2026

Location: Kuala Lumpur
Modal: ILT
Availability: TBC
Exam:
RM 1800
RM 8500

August 3, 2026 - August 7, 2026

Location: Online
Modal: VILT
Availability: TBC
Exam:
RM 1800
RM 8500

October 5, 2026 - October 9, 2026

Location: Kuala Lumpur
Modal: ILT
Availability: TBC
Exam:
RM 1800
RM 8500

October 5, 2026 - October 9, 2026

Location: Online
Modal: VILT
Availability: TBC
Exam:
RM 1800
RM 8500

December 7, 2026 - December 11, 2026

Location: Kuala Lumpur
Modal: ILT
Availability: TBC
Exam:
RM 1800
RM 8500

December 7, 2026 - December 11, 2026

Location: Online
Modal: VILT
Availability: TBC
Exam:
RM 1800
RM 8500
Trainocate exam and cert

Exam & Certification

Cisco Certified CyberOps Professional Certification.

Traditional information security is no match for the expanding cybercrime ecosystem; therefore, security measures must evolve to intelligent security rather than information security. Achieving the Cisco Certified CyberOps Professional certification elevates your skills to meet that demand and confirms your abilities as an Information Security analyst in incident response roles, cloud security, and other active defense security roles.

Training & Certification Guide

As the complexity of cyberattacks continues to increase in size and scale, your organization needs highly qualified personnel to provide security expertise before, during, and after an attack. The demand is greater now than ever before for professionals with the knowledge and skills to detect and respond to cybersecurity threats, manage security incidents, automate security tasks, and secure the sensitive information of your organization.

This certification gives you knowledge and skills beyond simple firewalls and antivirus software and enables you to become a skilled CyberOps professional. This program is designed for mid-career professionals.

This certification programs will equip you with the skills and knowledge for the following job roles:

  • Sr. Information Security Analyst
  • Incident manager
  • Security Architect
  • Security analyst/Senior SOC analyst (Tier 2 and 3)

This certification is an investment that repays itself in improving your marketability, and enhancing your ability to respond to more sophisticated cyberattacks, and protect your organization’s data.

  • Enhance your earning potential with the new Cisco® Certified CyberOps Professional certification
  • Learn how to prevent, detect, and respond to cybersecurity threats and breaches
  • Prove your knowledge in cloud computing security, risk management, and threat intelligence analysis
  • Boost up your confidence with tested and relevant skills
  • Share your achievement with a digital certification badge on your social media profiles

Duration: 120 minutes
Languages: English

Price: $400 USD

This exam tests your knowledge and skills related to core cybersecurity operations, including:

  • Fundamentals
  • Techniques
  • Processes
  • Automation

Frequently Asked Questions

This course will help you:

  • Gain an advanced understanding of the tasks involved for senior-level roles in a security operations center
  • Configure common tools and platforms used by security operation teams via practical application
  • Prepare you to respond like a hacker in real-life attack scenarios and submit recommendations to senior management
  • Prepare for the 350-201 CBRCOR core exam
  • Earn 40 CE credits toward recertification

350-201 Performing CyberOps Using Cisco Security Technologies (CBRCOR) is a 120-minute exam associated with the Cisco CyberOps Professional Certification. The multiple-choice format tests knowledge of core cybersecurity operations including cybersecurity fundamentals, techniques, policies, processes, and automation. The exam will test for knowledge in the following areas:

  • Monitoring for cyberattacks
  • Analyzing high volume of data using automation tools and platforms—both open source and commercial
  • Accurately identifying the nature of attack and formulate a mitigation plan
  • Scenario-based questions; for example, using a screenshot of output from a tool, you may be asked to interpret portions of output and establish conclusions

Speak to a Training Consultant

All courses are HRD Claimable.
Get in touch with our team via the form or WhatsApp us on +6011-5119 6631

Preferred mode of training
Checkboxes