No pre-requisite certification is required to enroll in this certification.
You can take a test to evaluate whether it is the right time for you to enroll or not.
- Basic scripting
- Fundamentals of networking and common services
- Familiarity with SIEM, Logging, Rules, and Correlation concepts
- Basic Linux and Windows operating systems knowledge
Pre-requisite Soft Skills:
AEGIS Certification Coverage
It is possible to break down AEGIS Certification process into three parts. The first part is security monitoring, threat detection, and incident handling activities going on 7/24. There is IBM Qradar as the SIEM of the CSOC network. More integrations are on the way, such as Splunk, Alienvault, and others. It is not like the ordinary capture of the flags or exercises, but it is an almost entire CSOC simulation in a lab. It is possible to properly experiment with most of the MITRE ATT&CK vectors and TTP’s in this CSOC lab such as obfuscated commands, pivoting techniques, PowerShell payloads, and many more scenarios that were all very close to what you would see in the real world.
The second part is studying attack vectors by conducting them in the offensive labs. There are Linux and Windows machines, which together compose an Active Directory environment. Where you can practice AD-specific attack techniques and many more. AEGIS also provides you with test machines where you can observe your own activity from the logs while performing the attacks. You can use these to test and optimize your SIEM rules.
The third part is the soft skills improvement. Basically, during the certification process, you have a student portal. And this portal is like a project management system of a corporation. Throughout the whole training, a storyline is followed in order to gamify your training process. In this storyline, you are recruited as a security analyst to a corporation with high-security demands. You have weekly tasks, backlogs, daily standups, weekly retrospectives, weekly sprints, and so on. There are also security incidents that you may encounter at any time. You are asked to detect, analyze, and report them in a timely manner. Unless they are not false positives of course.