Course Information
- Course Code312-39
- Duration3 Days
- DeliveryOnline Live, I Learning
What You Will Learn
- Develop a deep understanding of SOC operations, workflows, and technologies across various environments including cloud and on-premises systems.
- Gain practical expertise in using SIEM solutions, developing use cases, managing alerts, and automating threat detection with AI-driven tools.
- Learn to perform efficient incident detection, triage, and response, including forensic investigations and malware analysis.
- Acquire skills to proactively identify emerging threats, conduct threat-hunting activities, and analyze Indicators of Compromise (IoCs) within the cyber kill chain framework.
- Build the ability to prepare effective security reports and communicate actionable insights to stakeholders.
- Master leveraging AI/ML tools to enhance SOC capabilities, including automating correlation rule creation, improving behavior analytics, and streamlining alert prioritization.
Course Curriculum
All You Need to Know
Knowledge of:
– Operating Systems (Linux, Windows, Mac OSX, Android, iOS)
– Data networks (TCP/IP, UDP protocol, ISO/OSI model, application protocols)
– Virtualization systems
– Programming concepts
– Fundamentals of computer security.
CSA Instructor-led live online package includes:
- Live online instructor-led training with Master Trainer
- One year access to training videos from master trainer
- Six months access to ilabs
- One year access to ecourseware
- Exam voucher
- Certificate of completion
CSA iLearn package includes:
- One year access to training videos from master trainer
- Six months access to ilabs
- One year access to ecourseware
- Exam voucher
- Certificate of completion
This course prepares you to take the ANSI-accredited CSA 312-39 exam. The course fee includes a Pearson Vue exam voucher. Number of questions: 100. Test format: multiple choice. Duration: 3 hours.
Frequently Asked Questions
Exam code 312-39.
Yes — CSA is aimed at Tier 1/Tier 2 SOC analysts and is a common entry point into SOC-focused careers.
Yes — the course covers SIEM operations, log management, and event correlation as part of core SOC workflows.
Many learners progress to CTIA (Threat Intelligence) or ECIH (Incident Handling) after CSA to build a complete blue-team skill set.
No — CSA combines SOC theory with hands-on log analysis and monitoring exercises using real-world scenarios.