QRadar SIEM Foundations

Learn Modern Technology This program provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, asset profiles, and vulnerabilities.
  • Using the QRadar SIEM user interface
  • Investigating an Offense triggered by events
  • Investigating the events of an offense
  • Investigating an offense that is triggered by flows
  • Using rules
  • Using the Network Hierarchy
  • Index and Aggregated Data Management
  • Using the QRadar SIEM dashboard
  • Creating QRadar SIEM reports
  • Using AQL for advanced searches
  • Analyze a real-world large-scale attack
Security analysts, security technical architects, offense managers, network administrators, and system administrators using QRadar SIEM.
Before taking this program, make sure that you have the following skills:
  • IT infrastructure
  • IT security fundamentals
  • Linux
  • Windows
  • TCP/IP networking
  • Syslog
Learn to
  • • Describe how QRadar SIEM collects data to detect suspicious activities
  • Describe the QRadar SIEM component architecture and data flows
  • Investigate suspected attacks and policy violations
  • Investigate events and flows and asset profiles
  • Investigate asset profiles
  • Determine how rules test incoming data and create offenses
  • Analyze a real world scenario
Delivery Method : Classroom Training
Duration : 24 hours
Level : Basic
Languages : English
Enquire Now – Smartree