• Course
  • Vendor

Learn how QRadar collects data to detect suspicious activities and how to perform many QRadar SIEM tasks. GK# 7021 Vendor# BQ103G

  • Course Start Date: 2019-05-20
  • Time: 09:30:00 - 17:30:00
  • Duration: 3 days 09:30 AM - 05:30 PM
  • Location: Virtual
  • Delivery Methods(s): Virtual Instructor Led
$2,970.00
REGULAR PRICE $3,300.00 Save $330.00
2 discount seats left!
or make an offer

Course Outline

Pre-Requisites

Before taking this course, make sure that you have the following skills:

IT infrastructure
IT security fundamentals
Linux
Windows
TCP/IP networking
Syslog

Lessons

IBM QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, asset profiles, and vulnerabilities. QRadar SIEM classifies suspected attacks and policy violations as offenses.

WHAT YOU'LL LEARN
After completing this course, you should be able to perform the following tasks:
  • Describe how QRadar SIEM collects data to detect suspicious activities
  • Describe the QRadar SIEM component architecture and data flows
  • Navigate the user interface
  • Investigate suspected attacks and policy violations
  • Search, filter, group, and analyze security data
  • Investigate events and flows
  • Investigate asset profiles
  • Describe the purpose of the network hierarchy
  • Determine how rules test incoming data and create offenses
  • Use index and aggregated data management
  • Navigate and customize dashboards and dashboard items
  • Create customized reports
  • Use filters
  • Use AQL for advanced searches
  • Analyze a real world scenario

OUTLINE
  • Unit 1: Introduction to IBM QRadar
  • Unit 2: IBM QRadar SIEM component architecture and data flows
  • Unit 3: Using the QRadar SIEM User Interface
  • Unit 4: Investigating an Offense Triggered by Events
  • Unit 5: Investigating the Events of an Offense
  • Unit 6: Using Asset Profiles to Investigate Offenses
  • Unit 7: Investigating an Offense Triggered by Flows
  • Unit 8: Using Rules
  • Unit 9: Using the Network Hierarchy
  • Unit 10: Index and Aggregated Data Management
  • Unit 11: Using the QRadar SIEM Dashboard
  • Unit 12: Creating Reports
  • Unit 13: Using Filters
  • Unit 14: Using the Ariel Query Language (AQL) for Advanced Searches
  • Unit 15: Analyzing a Real-World Large-Scale Attack
  • Appendix A: A real-world scenario introduction to IBM QRadar SIEM
  • Appendix B: IBM QRadar architecture

LABS
Extensive lab exercises are provided to allow students an insight into the routine work of an IT Security Analyst operating the IBM QRadar SIEM platform.  Extensive lab exercises are provided to allow students an insight into the routine work of an IT Security Analyst operating the IBM QRadar SIEM platform.

WHO SHOULD ATTEND
This course is designed for security analysts, security technical architects, offense managers, network administrators, and system administrators using QRadar SIEM.

Cancellation Policy

We require 16 calendar days notice to reschedule or cancel any registration. Failure to provide the required notification will result in 100% charge of the course. If a student does not attend a scheduled course without prior notification it will result in full forfeiture of the funds and no reschedule will be allowed. Within the required notification period, only student substitutions will be permitted. Reschedules are permitted at anytime with 16 or more calendar days notice. Enrollments must be rescheduled within six months of the cancel date or funds on account will be forfeited.

Training Location

Online Classroom
your office

your city, your province
your country   

About Global Knowledge

x

Global Knowledge is the world's leading learning services and professional development solutions provider. We deliver learning solutions to support customers as they adapt to key business transformations and technological advancements that drive the way that organizations around the world differentiate themselves and thrive. Our learning programs, whether designed for a global organization or an individual professional, help businesses close skills gaps and foster an environment of continuous talent development.

Training Provider Rating

This vendor has an overall average rating of 4.38 out of 5 based on 421 reviews.

No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
Wasn’t as advanced as I thought it would be. There was an issue when the day my course was the first time they used a new platfo ... Read more
x

Wasn’t as advanced as I thought it would be. There was an issue when the day my course was the first time they used a new platform.. from adobe to something called zoom; I had to call support line cause it stated our instructor wasn’t present. Thankfully I called cause everyone online was in the adobe virtual classroom waiting for what looked like a teacher who didn’t show up for class (IT didn’t get anything resolved until 10mins after start time). I felt like he was really getting hung up on very basic knowledge for the first half of the course (talking about how to create tabs and drag formulas as an example). I completed files a few times before he was done explaining. There was a scheduled fire drill for them (roughly 30mins)that also cut into our time, which wasn’t deducted from the hour lunch break or the two, fifteen min breaks. I also really wish he touched base more on the automating workbook functions portion which we barely did. I'm happy there were/are those study guides (learning videos) and exams to take on my own time that I hope after I've had the class are still available for me to learn from.

No comment
No comment
No comment
No comment
It was difficult to practice on my PC while trying to watch the presentation online.
No comment
David was excellent!! I am very for having this course!!
No comment
Everything was great, but the instructor wasted a lot of time talking about unrelated subjects (like demo-ing different programs, ... Read more
x

Everything was great, but the instructor wasted a lot of time talking about unrelated subjects (like demo-ing different programs, talking about other classes, and talks about how Excel/technology has changed) took up way too much time. The course could have been condensed or better focus would have been great

Did not actually receive the course materials yet (and the course has concluded). Ratings assume that I will receive the course m ... Read more
x

Did not actually receive the course materials yet (and the course has concluded). Ratings assume that I will receive the course materials as soon as possible.

Course Reviews

No Reviews Yet

More Courses from Global Knowledge

GLOBAL KNOWLEDGE
2019-11-18
Virtual
GLOBAL KNOWLEDGE
2019-07-17
Virtual
GLOBAL KNOWLEDGE
2019-10-30
Virtual
GLOBAL KNOWLEDGE
2019-06-13
Virtual

More Courses in 'IBM Security Systems' Category

GLOBAL KNOWLEDGE
2019-06-10
Virtual
GLOBAL KNOWLEDGE
2019-03-28
Virtual
GLOBAL KNOWLEDGE
2019-05-28
Virtual