SIEM Admin - Incident Handing Training - SOC Team

Learn about SIEM tools HP Arcsight, IBM QRadar, RSA Security Analytic, Splunk, McAfee Nitro required for in SOC
4.47 (107 reviews)
Udemy
platform
English
language
Network & Security
category
Vikram Saini
instructor
SIEM Admin - Incident Handing Training - SOC Team
503
students
3.5 hours
content
Aug 2023
last update
$22.99
regular price

What you will learn

What is the SIEM

SIEM Business Requirement

Integration Configuration of Data sources [Splunk]

SIEM Architechture of HP Arcsight, IBM QRadar, Splunk, RSA SA & McAfee Nitro

Administration of Configuration of Multiple SIEM (HP Arcsight, IBM QRadar, Splunk, RSA SA & McAfee Nitro)

Roles of Different SIEM Component of HP Arcsight, IBM QRadar, Splunk, RSA SA & McAfee Nitro

Event Life Cycle in SIEM Solution HP Arcsight, IBM QRadar, Splunk, RSA SA & McAfee Nitro

Alert Creation in [Splunk]

Creating Dashboards for Attack Analysis [Splunk]

Report Configuration [Splunk]

Building Industry Based Use Cases [Splunk]

Event Monitoring [Splunk]

Fine Tuning Of Alerts [Splunk]

Real World Incident Response Investigation [Splunk]

What is Cyber Kill Chain

How to develop effective USECASE in SIEM

How to Evaluate a SIEM tool

Screenshots

SIEM Admin - Incident Handing Training - SOC Team - Screenshot_01SIEM Admin - Incident Handing Training - SOC Team - Screenshot_02SIEM Admin - Incident Handing Training - SOC Team - Screenshot_03SIEM Admin - Incident Handing Training - SOC Team - Screenshot_04
Related Topics
2495064
udemy ID
8/5/2019
course created date
7/12/2020
course indexed date
Bot
course submited by