Cybersecurity for System Administrators

While the role of the System Administrator,or SysAdmin, has changed over the last 10 years, their primary responsibility is maintaining the accessibility and operability of an organization’s most important IT services.

Though not entirely obvious to some, many tasks of a SysAdmin today also reflect common fundamental cybersecurity practices, such as monitoring the network for outages or anomalies, user permissions and administration, and incident response and remediation. These tasks by definition align with a cyber-enabled job function and a critical member of upholding the organization’s security posture.

CyberVista is developing a new online cybersecurity training course to cross-skill System Administrators to both manage and secure the physical and digital architecture of the organization. This 100% online program will be available in the coming months. If this is in alignment with your organization’s long term goals, be the first to know about its release by signing up for our product development updates.

  • This program is a role-based training, comprehensive course that acts as a precursor to the Critical Knowledge training program. This course covers fundamental cybersecurity concepts and skills relevant to the day-to-day management and responsibilities of System Administrators and other information technology roles.

    While detailed specifics will be available soon, this course will be delivered 100% online and will be available through On-Demand or Live Online delivery, with a host of other tools and resources housed within CyberVista’s online platform.

  • This course is designed to train System Administrators that are currently responsible for tasks or subject areas that are cybersecurity-related in their nature. This offering is applicable across all industries. The following job titles are also likely covered within the subject matter of this program:

    • IT Administrator
    • Server Administrator
    • Linux System Administrator
    • Systems Engineer
  • Organizations participating in this offering will experience the following major benefits:

    • Efficiently improve knowledge, skills, and abilities related to day-to-day system administrator duties
    • Mitigate immediate weaknesses across critical cybersecurity knowledge and skill areas
    • Align cybersecurity strategy with planning, coordination, and direction the computer-related activities and goals for the organization.

Sign up for program updates.


An intelligent solution.

Diagnostic Assessment

Easily administer a diagnostic assessment is used to determine each team member’s strengths and weaknesses.

CyberVista Advance Screenshot

Video Lessons

Engage with introductory videos, modular lessons, and lab walk-through videos.

Kali Linux

Practical Labs

When only practical experience will suffice, work through lab exercises to reinforce real-world skills applications.

Final Assessment

Participants conclude training with a final assessment to determine improvement across knowledge and skills.

Final Workforce Analysis

Receive valuable workforce and cybersecurity insights based on team performance.

Course content

SOC Org & Processes

01. SOC Organization & Processes

Learners will understand the roles and responsibilities of both the SOC and the SOC analysts within an organization.

  • This unit covers the SOC as a whole along with the roles and responsibilities of SOC analysts (by tiers) and other related teams.

Threats & Vuln

02. Threats & Vulnerability Analysis

Learners will be able to conduct vulnerability assessment and analysis, threat research, and establish known-good and known-bad network baselines.

  • This unit teaches how to conduct a vulnerability assessment, how to analyze the results of the assessment, and how to conduct further research based on findings (e.g., relevant threat actors, known signatures, etc.).

Device Log

03. Device Log Analysis

Learners will understand the importance and mechanisms of device logs, be able to conduct log analysis, and create scripts to automate analysis.

  • This unit covers how to find the logs on a machine (both Windows and Linux), analyze the logs for any suspicious activity, create alert triggers for IDS technologies, and create basic scripts in bash/PowerShell and Python for automation strategies.

Comp Org.

04. Comprehensive Org. Event Correlation

Learners will understand the purpose and application of SIEMs, conduct analysis of SIEM results, correlate multiple network events, and detect evidence of post-attack strategies.

  • This unit covers an introduction to SIEMs, exposure to a SIEM interface, and tools/techniques to analyze SIEM results.


05. PCAP Analysis

Learners will be able to capture live traffic and conduct analysis on captured packets for indicators of network attacks.

  • This unit covers how to create PCAP files, and the different analysis techniques used to identify network attacks.

Incident Response

06. Incident Response

Learners will understand the Incident Response phases and determine indicators of compromise for given incidents.

  • This unit gives the students a taste of incident handling and provides further practice of PCAP/Log analysis.

“We had excellent help from the account management to the instructors — a great experience all around. Really great business and people.”

Director of SOC, Fortune 100 Retail Company