Are you ready to dive into the world of Cyber Threat Intelligence (CTI) and build job-ready skills in one of the most in-demand areas of cybersecurity?

This beginner-friendly course is designed to give you a clear, hands-on understanding of how Cyber Threat Intelligence works, how it supports Security Operations Centers (SOCs), and how you can start using real-world tools and platforms like Microsoft Sentinel and MISP to collect, process, and act on threat data. You’ll also gain insights into TTPs (Tactics, Techniques, and Procedures) used by adversaries and how CTI helps detect and defend against them.

What You’ll Learn:

Section 1: Introduction to CTI

• Understand what CTI is and why it’s critical to modern cybersecurity.

• Learn through real-world analogies that make complex topics easy to grasp.

Section 2: CTI Lifecycle Explained

• Follow the CTI lifecycle: Direction, Collection, Processing, Analysis, and Dissemination.

• Learn how each phase supports threat detection and enables a proactive defense strategy.

Section 3: Types of Threat Intelligence

• Dive into the four core types: Strategic, Tactical, Operational, and Technical intelligence.

• Understand how to apply them based on organizational needs and threat landscapes.

Section 4: Labs – Threat Intelligence in Microsoft Sentinel

• Set up your Microsoft Azure environment and deploy Microsoft Sentinel.

• Configure Log Analytics, explore the Content Hub, and integrate threat intelligence feeds including TTPs and IOCs.

• Learn how to operationalize CTI in a cloud-native SOC platform.

Section 5: Tools Every Analyst Should Know

• Explore the top 5 threat intelligence tools, including MISP for threat sharing and enrichment.

• See how these tools help track, analyze, and defend against real-world attacks using known TTPs.