IBM QRadar SIEM Advanced Topics

Price
$1,690.00 USD

Duration
2 Days

 

Delivery Methods
Virtual Instructor Led
Private Group

Request More Information
Download Course Details
Course Details Only
Course Details & Schedule
Skip to Class Dates

Course Overview

IBM® Security QRadar® enables you to minimize the time gap between when a suspicious activity occurs and when you detect it. Attacks and policy violations leave their footprints in log events and network flows of your IT systems. To connect the dots, QRadar SIEM correlates these scattered events and flows into offenses that alert you to suspicious activities. Using the skills taught in this course, you will be able to configure processing of uncommon events, work with reference data, and develop custom rules, custom actions, and custom anomoly detection rules. The lab environment for this course uses the IBM QRadar SIEM 7.3 platform.

Course Objectives

  • Create custom log sources to utilize events from uncommon sources
  • Create, maintain, and use reference data collections
  • Develop and manage custom rules to detect unusual activity in your network
  • Develop and manage custom action scripts to for automated rule response
  • Develop and manage anomaly detection rules to detect when unusual network traffic patterns occur

Who Should Attend?

Security administrators Security technical architects Offense managers Professional services using QRadar SIEM QRadar SIEM administrators
  • Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
  • Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
  • Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
  • Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
  • Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
  • Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.

Course Prerequisites

You should have completed the IBM QRadar SIEM Foundations course.

Agenda

1 - Course Outline

  • Module 1: Creating log source types
  • Module 2: Leveraging reference data collections
  • Module 3: Developing custom rules
  • Module 4: Creating Custom Action Scripts
  • Module 5: Developing Anomaly Detection Rules
 

Upcoming Class Dates and Times

Jun 27, 28
8:30 AM - 4:30 PM
ENROLL $1,690.00 USD

Virtual: Online - CST
Jul 25, 26
8:30 AM - 4:30 PM
ENROLL $1,690.00 USD

Virtual: Online - CST
Sep 19, 20
8:30 AM - 4:30 PM
ENROLL $1,690.00 USD

Virtual: Online - CST
 



Do You Have Additional Questions? Please Contact Us Below.

contact us contact us 
 
Contact Us about Starting Your Business Training Strategy with New Horizons