IBM Security QRadar SIEM Foundations

This basic course is suitable for security analysts, security technical architects, offense managers, network administrators, and system administrators.

Prerequisite
Please contact us for information about prerequisites.

Expected Duration
2 day

Description

QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, assets, and vulnerabilities. Suspected attacks and policy breaches are highlighted as offenses. In this course, you learn to navigate the user interface and how to investigate offenses. You search and analyze the information from which QRadar SIEM concluded a suspicious activity. Hands-on exercises reinforce the skills learned.

Objective

1. Introduction to IBM Security QRadar SIEM

2. How QRadar SIEM collects security data

3. Using the QRadar SIEM Dashboard

4. Investigating an offense that is triggered by events

5. Investigating the events of an offense

6. Using asset profiles to investigate offenses

7. Investigating an offense that is triggered by flows

8. Using rules and building blocks

9. Creating QRadar SIEM reports

10. Performing advanced filtering

SUBSCRIPTION COST


$1,795.00

Select Course Options

 

NEED HELP OR NOT SURE?