Monitor and Detect with IBM Security QRadar

سرفصل های دوره

Detecting threats and analyzing offenses are the main tasks of a SOC Analyst. This course will teach you how to triage offenses and detect threats using the IBM Security QRadar SIEM.

Exercise Files

ibm-security-qradar-monitor-detect.zip

Module 1 - Course Overview

1. Course Overview

Module 2 - The Offense Triage Process

1. Understanding the SOC Analyst Role

2. The Offense Triage Process

3. Offense Handling in QRadar

Module 3 - Triaging Offenses in QRadar

1. Understanding Offense Triage in QRadar

2. Credential Brute Forcing Attacks

3. Port Scanning Detection

4. Malware Activity

5. Other Attacks

Module 4 - Threat Detection and Rule Management

1. Detection Continuous Improvement

2. Understanding Rules and Building Blocks

3. Tuning an Existing Rule

4. Creating a Detection Rule

5. Creating a Malicious Traffic Detection Rule

6. The Use Case Manager App

7. Finding Potential Tuning Opportunities

Module 5 - Vulnerability Management

1. Understanding Vulnerability Management

2. Managing Vulnerabilities with QRadar

Module 6 - Detecting Internal Threats with UBA

1. Understanding User Behavior Analysis

2. Investigating a Suspicious Employee

3. Creating Watchlists

4. Customizing Rules

5. Course Closure

139,000 تومان

افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: PluralSight