The OffSec Defense Analyst certification validates your expertise in macOS security and demonstrates your ability to detect, analyze, and assess a potential security incident through live exercises.

What You’ll Learn

Foundations of SOC Operations
Gain an in-depth understanding of SOC workflows and defensive strategies. Learn how to build a resilient defense architecture capable of identifying and mitigating evolving security threats across enterprise environments.

Threat Detection and Analysis
Collect and correlate data using enterprise-grade SIEM tools like ELK and Splunk. Analyze attack patterns, interpret event logs, and apply advanced malware analysis techniques to uncover hidden threats.

Vulnerability and Risk Management
Understand vulnerability management fundamentals, including assessment, prioritization, and remediation. Learn how to balance business continuity with proactive defense to minimize exposure to cyber risks.

Endpoint and Network Defense
Explore Windows and Linux endpoint security, including mechanisms, vulnerabilities, and how attackers target both environments. Learn to identify and counter social engineering and spear phishing tactics, and use frameworks like Invoke-Obfuscation to simulate adversarial behavior.

Access Control and Privilege Management
Investigate administrative groups such as Domain Admins, Enterprise Admins, and Full Administrators to understand secure domain access control and privilege escalation prevention.

Hands-On Experience
SOC-200 follows OffSec’s challenge-based learning model, emphasizing practical, real-world experience. Each of the 19 modules includes videos, hands-on labs, and exercises that allow learners to demonstrate their understanding. After completing the course materials, more than a dozen Challenge Labs help learners apply their skills to defend infrastructure in realistic attack simulations.

Upon completion, learners can sit for the OSDA exam, where they’ll demonstrate their ability to identify, analyze, and respond to threats within a live lab environment.

Audience Profile

SOC-200 is ideal for anyone seeking to take a serious step into the world of information security and learn the core skills of detecting, analyzing, and defending against cyber attacks. Learners should have a solid foundation in TCP/IP networking, familiarity with Linux and Windows operating systems, and a basic understanding of cybersecurity concepts.

This course doesn’t just prepare learners for certification—it prepares them for the real-world challenges of a SOC analyst role.

Required Training for Certificate

• SOC-200: Security Operations and Defensive Analysis

Schedule Your Exam and Get Certified

Schedule your exam with Iverson’s Test Administrator at [email protected]