Arrow Electronics, Inc.

QRadar SIEM: Exploring reports, rules, and offenses (v7.5)

CODE: BQ320G

DURÉE: 4,41 Hours

PRIX H.T.: €660,00

Description

Communicating the details and statistics from your security investigation and proving your organization's compliance are crucial responsibilities. You want to present your findings so that upper management can clearly understand the results. That's where QRadar reports come in. Gain the skills you need to optimize your QRadar SIEM reports.

Manage your organization's cybersecurity risks with up-to-date input by comparing your QRadar rules to the MITRE ATT@CK framework and install the updates that it recommends.

Customize your organization's dashboards and put custom rules in place to filter QRadar data. Security analysts appreciate getting the right data to investigate security incidents.

Expand your capabilities in investigating security incidents with QRadar SIEM offenses.

Objectifs

Upon successful completion of this course, you can:

  • Customize and generate QRadar reports
  • Create, edit and manage QRadar rules
  • Investigate QRadar offenses

Audience

  • Security Analyst
  • Security Administrator

Programme

This course covers the following topics:

  • QRadar Reporting and dashboards
  • Custom Rule Engine (CRE)
  • QRadar Use Case Manager app
  • Working with offenses

Dates de session
Date
Lieu
Time Zone
Langue
Type
Garanti
PRIX H.T.

English

Self Paced Training

€ 660,00

Nous proposons aussi des sessions dans d'autres pays