SIEM Admin – Incident Handling Training

Teacher
Securium solutions
Category:
IBM Cybersecurity

SIEM Admin – Incident Handling Training

Learn about SIEM tools HP Arcsight, IBM QRadar, RSA Security Analytics, Splunk, McAfee Nitro required for in SOC

 

Things you’ll learn

  • What is the SIEM
  • SIEM Business Requirement
  • Integration Configuration of Data sources [Splunk]
  • SIEM Architecture of HP Arcsight, IBM QRadar, Splunk, RSA SA & McAfee Nitro
  • Administration of Configuration of Multiple SIEM (HP Arcsight, IBM QRadar, Splunk, RSA SA & McAfee Nitro)
  • Roles of Different SIEM Components of HP Arcsight, IBM QRadar, Splunk, RSA SA & McAfee Nitro
  • Event Life Cycle in SIEM Solution HP Arcsight, IBM QRadar, Splunk, RSA SA & McAfee Nitro
  • Alert Creation in [Splunk]
  • Creating Dashboards for Attack Analysis [Splunk]
  • Report Configuration [Splunk]
  • Building Industry Based Use Cases [Splunk]
  • Event Monitoring [Splunk]
  • Fine Tuning Of Alerts [Splunk]
  • Real-World Incident Response Investigation [Splunk]
  • What is Cyber Kill Chain
  • How to develop effective USE CASE in SIEM
  • How to Evaluate a SIEM tool

 

Requirements

Be able to understand the basics of windows and networks

PHASE 2 – This course will make you familiar and teach you about various SIEM tools components, architecture, event life cycle, and administration parts for Splunk for log source integration, rule creation,  report configuration, dashboard creation, fine-tuning, and Incident Handing steps followed by Security Operation Center Team.

This course is designed in such a way, that any beginner or any working professional can learn the below SIEM tools event flow, architecture, design & difference.

  • HP ArcSight
  • IBM QRadar
  • RSA Security Analytics
  • Splunk
  • McAfee Nitro

 

Who this course is for:

  • College Student looking for Cyber Security Opportunity.
  • Security Engineer curious about SIEM
  • SOC Analyst looking for SIEM Administration Training
  • Network Engineer looking for a change in Cyber Security
  • SOC Analyst looking to learn multiple SIEM tools

 

Course content

  • Why is SIEM tool required in cybersecurity
  • SIEM introduction
  • SIEM architecture of HP Arcsight, RSA Splunk, QRadar & nitro
  • SIEM Architecture – Receiver Component.
  • SIEM Architecture – Manager Component
  • SIEM Architecture – Logger Component

Be the first to add a review.

Please, login to leave a review
Add to Wishlist
Get course

Talk to us

India: +91-9310624042

US: +1 (201) 549-9007

Review

Click edit button to change this text. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

Mike Stuart

Support

Click edit button to change this text. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

Mila Kunis

Manager

Click edit button to change this text. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

Adam Sendler

Designer

Social Network

SIEM Admin – Incident Handling Training
Category:
IBM Cybersecurity
Teacher
Securium solutions
Price:
$600 $499
Get Course