Certification Overview
The GCDA certification proves an individual knows how to collect, analyze, and tactically use modern network and endpoint data sources to detect malicious or unauthorized activity.
Areas Covered
- SIEM Architecture and SOF-ELK
- Service Profiling, Advanced Endpoint Analytics, Baselining and User Behavior Monitoring
- Tactical SIEM Detection and Post-Mortem Analysis
Who is GCDA for?
- Security Analyst
- Security Architects
- Senior Security Engineers
- Technical Security Managers
- SOC Analysts
- SOC Engineers
- SOC Managers
- CND Analysts
- Security Monitoring
- System Administrators
- Cyber Threat Investigators
- Individuals working to implement Continuous Security Monitoring or Network
- Individuals working in a hunt team capacity
