IBM – Q Radar SIEM 7.2 Administration and Configuration

Overview

Audience & Prerequisites

Course Outline

Schedule & Fees

Certification

Q Radar SIEM 7.2 Administration and Configuration

QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, assets, topologies, and vulnerabilities. Suspected attacks and policy breaches are highlighted as offenses. In this course, you learn how to configure and administer QRadar SIEM, create Universal DSMs and Log Source Extensions, and create event, flow and anomaly rules. Using the skills taught in this course, you can maintain QRadar SIEM, work with log sources, analyze the offenses created by rules and if necessary fine-tune them. Hands-on exercises reinforce the skills learned.

Prerequisites:

  • IBM Security QRadar SIEM Foundations

Course Outline                                                  Duration: 3 Days

  • Module-1: Using administrative tools
  • Module-2: Creating the network hierarchy
  • Module-3: Updated administration tools
  • Module-4: Managing users
  • Module-5: Managing data
  • Module-6: Collecting log and flow records
  • Module-7: Collecting Windows log records
  • Module-8: Managing custom log sources
  • Module-9: Using rules
  • Module-10: Creating rules
  • Module-11: Managing false positives
  • Module-12: Using Reference Maps in rules

Please write to us at info@itstechschool.com & contact us at +91-9870480053 for the course price & certification cost, schedule & location

Drop Us a Query

For more info kindly Contact Us.


Reviews