INTERMEDIATE
Security Operations

Security Operations and Threat Hunting

Turn telemetry into detections and hunts mapped to MITRE ATT&CK.

15 hours2 modules5 lessonsVersion 1

About this course

Beacon builds your blue-team core: SIEM concepts, alert triage, detection engineering, and hypothesis-driven threat hunting, all mapped to MITRE ATT&CK.

What you will learn

  • Triage and engineer detections
  • Run structured hunts
  • Map activity to ATT&CK

Curriculum

Module 1. Detection Engineering

From logs to reliable alerts.

  • SIEM Concepts & Alert Triage28 min
  • Detection Engineering with ATT&CK30 min
Module 2. Threat Hunting

Hypothesis-driven proactive defense.

  • Hypothesis-Driven Threat Hunting30 min
  • Threat Intelligence & IOCs26 min
  • Security Metrics & Continuous Improvement24 min
← Back to all courses