Detail kurzu

ESM200 – ArcSight ESM Administrator and Analyst

EDU Trainings s.r.o.

Popis kurzu

In this introductory course you learn how to use the ArcSight console and ArcSight Command Center to monitor security events, configure ESM, manage users, and manage ESM network intelligence resources. You will also be introduced to triaging and resolving cases with SOAR.
In this introductory course learners use the ArcSight console and ArcSight Command Center user interfaces to monitor security events, configure ESM, and manage users and as well as ESM network intelligence resources. Using ArcSight ESM workflow, participants isolate, document, escalate, and resolve security incidents.

Obsah kurzu

Upon successful completion of this course, you should be able to:

Make ArcSight ESM operational upon initial installation
Describe how ESM works in the context of your network
Create user accounts
Implement built-in content
Populate ESM with your network and assets to identify endpoints involved in an event
Create site-specific business-oriented views
Investigate, identify, analyze, and remediate exposed security issues
Use workflow management to provide real-time incident response and escalation tracking
Modify and run standard reports to provide situational awareness and network status
Establish ESM peering across multiple ESM instances
Perform distributed event search and content management
Certifikát Na dotaz.
Hodnotenie




Organizátor



Ďalšie termíny kurzu
Termín Cena Miesto konania Zarezervovať