This is an advanced course for the QRadar Analyst and Administrator and is a follow-on to BQ103G. This course uses the IBM QRadar SIEM 7.3 platform for lab exercises.
  • BQ203G
  • Délka 2 dny
  • 0 ITK bodů
  • 1 termin
  • Praha (28 000 Kč)

    Brno (na vyžádání)

    Bratislava (1 120 €)

This is an advanced course for the QRadar Analyst and Administrator and is a follow-on to BQ103G. This course uses the IBM QRadar SIEM 7.3 platform for lab exercises.

»

This course is useful for Security administrators, Security technical architects, Offense managers, Professional services using QRadar SIEM, QRadar SIEM administrators.

  • Create custom log sources to utilize events from uncommon sources
  • Create, maintain, and use reference data collections
  • Develop and manage custom rules to detect unusual activity in your network
  • Develop and manage custom action scripts to for automated rule reponse
  • Develop and manage anomoly detection rules to detect when unusual network traffic patterns occur
  • IT infrastructure
  • IT security fundamentals
  • Linux
  • Microsoft Windows
  • TCP/IP networking
  • Log files and events
  • Network flows
  • You should also have completed the IBM QRadar SIEM Foundations course.
  • Module 1: Creating log source types
  • Module 2: Leveraging reference data collections
  • Module 3: Developing custom rules
  • Module 4: Creating Custom Action Scripts
  • Module 5: Developing Anomaly Detection Rules
  • Aktuální nabídka
    Školicí místo
    Jazyk kurzu

    Uvedené ceny jsou bez DPH.