Information Security Management Expert


SOC | IT-Security Expert certification

About the course

IT-Security Expert was designed for IT security professionals who aspire to become Tier 1/Tier 2 Security Operations Centre (SOC) Analysts and work in a dedicated team of cybersecurity experts to detect, contain and remediate IT threats.

The course blends theory and practice to fully prepare you for the SOC Analyst job role. As you move along in the course, you will understand how a SOC operates, and you will familiarise yourself with the tools and technologies SOC Analysts use in their daily work. You will learn to master log collection, log analysis and threat detection, and you will gain hands-on experience in threat analysis, incident response and reporting.

  • Learn threat detection, analysis and response from experienced IT security specialists;
  • Gain hands-on SOC experience in a virtual environment.


SECO-IT-Security Practitioner (S-ITSP) or equivalent is required. If you are unsure about your level, test yourself with the SECO-IT Security Practitioner sample exam.

A minimum of six months of experience in a SOC environment is required.

About the certificate

Core SOC Analyst competencies you will validate with your SECO-ITSE (S-ITSE) certificate

The IT-Security Expert certification exam covers a set of industry-established competencies that are essential for aspiring SOC Analysts.

By passing the ITSE certification exam and earning a SECO-IT-Security Expert (S-ITSP) certificate, you showcase your ability to:

  • Demonstrate an in-depth understanding of SIEM, Splunk, IDPS, security analytics, SOAR, EDR, NTA, TIP and vulnerability scanners;
  • Provide direction and consultation on log collection and log monitoring (define data gathering strategies, develop an effective pattern management strategy, set up and configure log monitoring/analysis, analyse log collections and evaluate the findings);
  • Identify and detect network and infrastructure security threats (recognise network and infrastructure security threats and analyse the environment to identify all security threats);
  • Analyse basic network and infrastructure security threats;
  • Report on the severity of threats and provide advice for remediation using adequate reporting techniques;
  • Adequately respond to basic network and infrastructure security threats.

What are the benefits of an S-ITSE certificate?

An S-ITSE certificate demonstrates that you have acquired the knowledge and skills necessary to assume responsibility for threat detection, analysis and response, and that you are able to use your skills to improve your organisation’s overall security posture. In the possession of this qualification, you will be able to benefit from abundant career opportunities in government and public-sector Security Operations Centres. The certificate also has benefits for you if you are considering further advancing your career and working your way to SOC Manager.

Who should certify?

The S-ITSE certificate is particularly suitable for you, if

  • You are a system, network or application administrator;
  • You are a junior security specialist;
  • You are a mid or senior-level engineer;
  • You are a manager in a SOC-related environment and you would like to gain insight in the daily activities of SOC Analysts.

How to prepare for the certification exam?

You can prepare for your certification exam by taking a course or by self-study.

We also offer classroom training through our accredited education partners. To find a course in your country, visit the Get Trained page.

How to book a certification exam?

You can take your certification exam at an accredited exam centre or online.

For more information on the exam, please refer to the SECO Examination Guide.

S-ITSE certificate and digital badge

Upon successful completion of a SECO SOC | IT-Security Expert certification exam, you will receive the S-ITSE certification title and a digital badge. Your credentials will grant you a one-year SECO membership. After your certification expires, you will have the option to re-certify by paying a small fee.

As a prerequisite to renewing your certification, you have to meet Continuing Professional Education (CPE) requirements. CPE requirements can be met by attending workshops, conferences and webinars, publishing articles, providing training, and performing other similar activities that help you maintain your professional competencies.

For more information on the certification process and Continued Professional Education (CPE) requirements, please refer to the SECO Certifications Guide.