EC-Council CSA Exam Syllabus

CSA PDF, 312-39 Dumps, 312-39 PDF, CSA VCE, 312-39 Questions PDF, EC-Council 312-39 VCE, EC-Council CSA Dumps, EC-Council CSA PDFUse this quick start guide to collect all the information about EC-Council CSA (312-39) Certification exam. This study guide provides a list of objectives and resources that will help you prepare for items on the 312-39 EC-Council Certified SOC Analyst exam. The Sample Questions will help you identify the type and difficulty level of the questions and the Practice Exams will make you familiar with the format and environment of an exam. You should refer this guide carefully before attempting your actual EC-Council CSA certification exam.

The EC-Council CSA certification is mainly targeted to those candidates who want to build their career in Advanced domain. The EC-Council Certified SOC Analyst (CSA) exam verifies that the candidate possesses the fundamental knowledge and proven skills in the area of EC-Council CSA.

EC-Council CSA Exam Summary:

Exam Name EC-Council Certified SOC Analyst (CSA)
Exam Code 312-39
Exam Price $250 (USD)
Duration 180 mins
Number of Questions 100
Passing Score 70%
Books / Training Courseware
Schedule Exam Pearson VUE OR ECC Exam Center
Sample Questions EC-Council CSA Sample Questions
Practice Exam EC-Council 312-39 Certification Practice Exam

EC-Council 312-39 Exam Syllabus Topics:

Topic Details Weights
Security Operations and Management - Understand the SOC Fundamentals
- Discuss the Components of SOC: People, Processes and Technology
- Understand the Implementation of SOC
5%
Understanding Cyber Threats, IoCs, and Attack Methodology - Describe the term Cyber Threats and Attacks
- Understand the Network Level Attacks
- Understand the Host Level Attacks
- Understand the Application Level Attacks
- Understand the Indicators of Compromise (IoCs)
- Discuss the Attacker’s Hacking Methodology
11%
Incidents, Events, and Logging - Understand the Fundamentals of Incidents, Events, and Logging
- Explain the Concepts of Local Logging
- Explain the Concepts of Centralized Logging
21%
Incident Detection with Security Information and Event Management (SIEM) - Understand the Basic Concepts of Security Information and Event Management (SIEM)
- Discuss the Different SIEM Solutions
- Understand the SIEM Deployment
- Learn Different Use Case Examples for Application Level Incident Detection
- Learn Different Use Case Examples for Insider Incident Detection
- Learn Different Use Case Examples for Network Level Incident Detection
- Learn Different Use Case Examples for Host Level Incident Detection
- Learn Different Use Case Examples for Compliance
- Understand the Concept of Handling Alert Triaging and Analysis
26%
Enhanced Incident Detection with Threat Intelligence - Learn Fundamental Concepts on Threat Intelligence
- Learn Different Types of Threat Intelligence
- Understand How Threat Intelligence Strategy is Developed
- Learn Different Threat Intelligence Sources from which Intelligence can be Obtained
- Learn Different Threat Intelligence Platform (TIP)
- Understand the Need of Threat Intelligence-driven SOC
8%
Incident Response - Understand the Fundamental Concepts of Incident Response
- Learn Various Phases in Incident Response Process
- Learn How to Respond to Network Security Incidents
- Learn How to Respond to Application Security Incidents
- Learn How to Respond to Email Security Incidents
- Learn How to Respond to Insider Incidents
- Learn How to Respond to Malware Incidents
29%

To ensure success in EC-Council CSA certification exam, we recommend authorized training course, practice test and hands-on experience to prepare for EC-Council Certified SOC Analyst (312-39) exam.

Rating: 5 / 5 (70 votes)