Security / Technical Security

IBM Security QRadar SIEM Advanced Topics.

IBM Security QRadar helps minimize the time gap between the occurrence of suspicious activity and its detection. Attacks and policy violations leave traces in log events and network flows of information systems. To connect the dots, QRadar SIEM correlates these distributed events and flows into crimes that alert you to suspicious activity. Using the skills taught in this course, you will be able to configure the processing of unusual events, work with reference data and develop custom rules.

Issues

Create custom log sources to use events from unusual sources
Creation, maintenance and use of reference data sets
Develop and optimize custom rules to detect indicators of attack or policy violations

Who is this training for?

Security administrators

Security technical architects

Crime Managers

Professional services using QRadar SIEM

QRadar SIEM Administrators

Prerequisites

IT infrastructure
IT security basics
Linux
Microsoft Windows
TCP/IP networks
Log files and events
Network flows
https://eitt.pl/technologie/ibm-security-qradar-siem-foundations/

Training program

Delivery Methods

Online

Convenience of participating from anywhere
Interactive live sessions with trainer
Materials available for 30 days
No travel costs

On-site

Direct contact with trainer and group
Intensive hands-on workshops
Networking with other participants
Full focus on learning

Frequently asked questions

What are the prerequisites for this training?

For IBM Security QRadar SIEM Advanced Topics. we recommend: IT infrastructure; IT security basics; Linux.

What is the format and duration of this training?

The training lasts 1 day and is available in online and on-site format. Sessions run from 9:00 AM to 4:00 PM. We can also customize the schedule to fit your team's needs.

Who is this training designed for?

This training is designed for: Security administrators; Security technical architects; Crime Managers.