Detail kurzu
ESM200 – ArcSight ESM Administrator and Analyst
EDU Trainings s.r.o.
Popis kurzu
In this introductory course you learn how to use the ArcSight console and ArcSight Command Center to monitor security events, configure ESM, manage users, and manage ESM network intelligence resources. You will also be introduced to triaging and resolving cases with SOAR.
In this introductory course learners use the ArcSight console and ArcSight Command Center user interfaces to monitor security events, configure ESM, and manage users and as well as ESM network intelligence resources. Using ArcSight ESM workflow, participants isolate, document, escalate, and resolve security incidents.
In this introductory course learners use the ArcSight console and ArcSight Command Center user interfaces to monitor security events, configure ESM, and manage users and as well as ESM network intelligence resources. Using ArcSight ESM workflow, participants isolate, document, escalate, and resolve security incidents.
Obsah kurzu
Upon successful completion of this course, you should be able to:Make ArcSight ESM operational upon initial installation
Describe how ESM works in the context of your network
Create user accounts
Implement built-in content
Populate ESM with your network and assets to identify endpoints involved in an event
Create site-specific business-oriented views
Investigate, identify, analyze, and remediate exposed security issues
Use workflow management to provide real-time incident response and escalation tracking
Modify and run standard reports to provide situational awareness and network status
Establish ESM peering across multiple ESM instances
Perform distributed event search and content management
Certifikát
Na dotaz.
Hodnotenie
Organizátor
Podobné kurzy
podľa názvu a lokality