IBM Security QRadar SIEM Advanced Topics [BQ203G]

Total time
Location
At location, Online
Starting date and place
Logo Global Knowledge Network Training Ltd.

Need more information? Get more details on the site of the provider.

Starting dates and places

place(Virtual Training Centre)
9 Dec 2021 until 10 Dec 2021
place(Virtual Training Centre)
3 Mar 2022 until 4 Mar 2022
place(Virtual Training Centre)
2 Jun 2022 until 3 Jun 2022

Description

OVERVIEW

This is an advanced course for the QRadar Analyst and Administrator and is a follow-on to BQ103G.

This course uses the IBM QRadar SIEM 7.3 platform for lab exercises.

OBJECTIVES

The course objctives are:

  • Create custom log sources to utilize events from uncommon sources
  • Create, maintain, and use reference data collections
  • Develop and manage custom rules to detect unusual activity in your network
  • Develop and manage custom action scripts to for automated rule reponse
  • Develop and manage anomoly detection rules to detect when unusual network traffic patterns occur

AUDIENCE

This course is useful for Security administrators, Security technical architects, Offense managers, Professional s…

Read the complete description

Frequently asked questions

There are no frequently asked questions yet. If you have any more questions or need help, contact our customer service.

OVERVIEW

This is an advanced course for the QRadar Analyst and Administrator and is a follow-on to BQ103G.

This course uses the IBM QRadar SIEM 7.3 platform for lab exercises.

OBJECTIVES

The course objctives are:

  • Create custom log sources to utilize events from uncommon sources
  • Create, maintain, and use reference data collections
  • Develop and manage custom rules to detect unusual activity in your network
  • Develop and manage custom action scripts to for automated rule reponse
  • Develop and manage anomoly detection rules to detect when unusual network traffic patterns occur

AUDIENCE

This course is useful for Security administrators, Security technical architects, Offense managers, Professional services using QRadar SIEM, QRadar SIEM administrators.

CONTENT

In this course, you will see:

  • Module 1: Creating log source types
  • Module 2: Leveraging reference data collections
  • Module 3: Developing custom rules
  • Module 4: Creating Custom Action Scripts
  • Module 5: Developing Anomaly Detection Rules
There are no reviews yet.

Share your review

Do you have experience with this course? Submit your review and help other people make the right choice. As a thank you for your effort we will donate £1.- to Stichting Edukans.

There are no frequently asked questions yet. If you have any more questions or need help, contact our customer service.