Cyber Analyst Advanced

The Cyber Analyst Advanced five-day course builds upon knowledge from the Cyber Analyst Bootcamp course but focuses on ‘soft’ skills.  These include critical thinking, link analysis, deception techniques and communication skills.  These skills make the difference between a good and great cyber investigator.  


Surprising to many techies, great cyber analysts have well developed 'soft' skills.  These include an enhanced ability to communicate with different audiences (technical, non-technical and management) and critical thinking skills to evaluate and account for partial or purposefully manipulated evidence found during investigations.  


Cyber Analyst Advanced covers these domains of knowledge and applies them to staged incidents so that students can see, first hand, just how powerful these techniques can be to find 'the truth' during investigations.


We use a combination of hands-on-labs and short videos to help convey the highly technical concepts found in cyber analysis.  Students will watch a video and then perform the same steps in lab scenarios to help reinforce the key points.


Realistic investigation centric training. Students collaborate in small teams to investigate real-world incidents

Cyber Analyst Advanced Learning Outcomes

Students graduating Cyber Analyst Advanced have proven they are able to work effectively against sophisticated cyber actors in any commercial or classified environment.


Students participate in cyber war exercises where they must demonstrate good cyber tradecraft, OSINT, intelligence analysis and communication skills to a variety of audiences.  Graduates have proven themselves capable of working in National Security roles or high-risk environments as elite cyber security professionals.

Topics Covered Include

  • introduction to critical thinking

  • overcoming cognitive biases

  • intelligence report writing

  • intelligence assessment writing

  • communicating technical findings to non-technical audiences

  • establishing communication chains during incident response

  • link analysis techniques

  • understanding victim psychology during incident response

  • when to shut down an actor and when to watch

  • using deception to gather cyber intelligence

  • deploying and maintaining honeypots

  • seeding fake staff members for OSINT

  • developing long-term deception operations

  • attribution, why all the fuss?

  • formal incident response procedures and how to prepare for your next breach

  • what to tell Executives before your next incident

  • preparing your network to detect sophisticated actors

The Cyber Analyst Advanced course is held intermittently at Cybermerc's office in Canberra throughout the year.  Please get in touch if you would like to talk about a group booking.

Suite 1, 31-37 Townshend Street, Phillip, ACT, 2606

0407 428 035

  • Twitter - Black Circle
  • LinkedIn - Black Circle

© 2018 by Cybermerc | Dare to be wise.