← Back to all courses

Building the Ultimate SOC

Practical course on building an effective Security Operation Center

Enroll now

Format

Online, onsite (for private groups)

Duration

3 days

Level

Basic

Language

English

Arabic

Target participants

SOC managers

Gain expertise in defining and managing key SOC services, focusing on people, processes, and technologies to build a capable security team, design essential documentation, and establish metrics for continuous performance improvement.

Lead analysts

Build hands-on expertise across diverse SOC services, mastering the application of threat intelligence to enhance detection and response, while participating in advanced operations like CSIRT and framework-based assessments.

Security managers

Acquire a comprehensive understanding of SOC types, architectures, and operating models to design long-term strategies, conduct organizational assessments, and oversee the successful implementation of commercial SOC and CSIRT operations.

Course modules

SOC fundamentals

SOC purpose, structure, and key roles
Common attack types and layered defense approach
SOC architecture and frameworks
People, processes, and technologies in SOC operations

Security assessment services

Digital forensics services
Penetration testing
Red teaming
Tabletop exercises
Security controls gap assessments
Objectives and recommended frequency of assessments

SOC maturity evaluation

SOC Capability & Maturity Model (SOC-CMM)
SOC MITRE ATT&CK Assessment
Mapping detection capabilities to adversary tactics and techniques

Commercial and sector SOC models

Operating SOC as a Managed Security Service Provider
Key considerations for national and industry-specific CSIRTs
Organizational models and funding approaches

SOC governance and best practices

SOC development roadmaps
Performance measurement and KPIs
Lessons learned and practical recommendations
Summary of key concepts and capabilities

Course certificate

At the end of the course, you will receive a personal certificate confirming your expertise and strengthening your professional credibility

Trainers

Ruben Martin Mondejar

Cyber Defense Consultant

Ruben Martin Mondejar

Ruben is a cybersecurity practitioner who has been working in the industry for 21 yrs. He has collaborated with both local and international CERTs doing investigations, research and acting as a highly technical consultant for various design, build, educate and operate initiatives for private and public sector in APJ, Middle East and Africa and the United States. He has taught in Nanyang Technological University in Singapore under the PaCE program and SG United Skills Program plus the Philippine National Police Academy focused on cybersecurity practices. He has collaborated on the research for the Center for Security Studies in Switzerland conducted for the Armed Forces of the Philippines regarding cyber-warfare. Written the Bangsamoro Cybersecurity Master Plan for the Bangsamoro Autonomous Region in Muslim Mindanao.