Certified SecOps Professional — Security Operations, Detection Engineering & Incident Response

Certification Overview

The Certified SecOps Professional credential validates your ability to design and operate security operations — SIEM deployment, detection engineering, SOAR automation, threat hunting, and incident response. This certification demonstrates you can build and run a modern SOC.

Who Should Enroll

• SOC analysts advancing to detection engineering
• Security engineers building SIEM/SOAR infrastructure
• IT operations professionals adding security operations skills
• Teams building or maturing SOC capabilities

Skills Validated

• SIEM: Splunk, Elastic Security, Sentinel — log ingestion, detection rules, dashboards
• SOAR: Automated enrichment, containment playbooks, case management
• Detection-as-Code: Sigma rules, version-controlled detection content, CI/CD for detections
• Threat Hunting: Hypothesis-driven methodology, threat intelligence integration (MISP)
• Vulnerability Management: Risk-based prioritization, automated scanning, patch verification
• Incident Response: IR lifecycle, evidence collection, post-incident review

Assessment Structure

Practical Lab (deploy SIEM with detection rules, build SOAR playbook), Capstone Project (SOC design for a simulated enterprise), Scenario-Based Evaluation.

Career Outcomes

Roles: SecOps Engineer, Detection Engineer, SOC Engineer, Security Operations Analyst, Incident Response Engineer.