Monitor and Detect with IBM Security QRadar

سرفصل های دوره

Detecting threats and analyzing offenses are the main tasks of a SOC Analyst. This course will teach you how to triage offenses and detect threats using the IBM Security QRadar SIEM.

Exercise Files

ibm-security-qradar-monitor-detect.zip

Module 1 - Course Overview

1. Course Overview

Module 2 - The Offense Triage Process

1. Understanding the SOC Analyst Role

2. The Offense Triage Process

3. Offense Handling in QRadar

Module 3 - Triaging Offenses in QRadar

1. Understanding Offense Triage in QRadar

2. Credential Brute Forcing Attacks

3. Port Scanning Detection

4. Malware Activity

5. Other Attacks

Module 4 - Threat Detection and Rule Management

1. Detection Continuous Improvement

2. Understanding Rules and Building Blocks

3. Tuning an Existing Rule

4. Creating a Detection Rule

5. Creating a Malicious Traffic Detection Rule

6. The Use Case Manager App

7. Finding Potential Tuning Opportunities

Module 5 - Vulnerability Management

1. Understanding Vulnerability Management

2. Managing Vulnerabilities with QRadar

Module 6 - Detecting Internal Threats with UBA

1. Understanding User Behavior Analysis

2. Investigating a Suspicious Employee

3. Creating Watchlists

4. Customizing Rules

5. Course Closure

45,900 تومان

خرید اشتراک افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: PluralSight