IBM Security QRadar Functions and Capabilities

Focused View

Ricardo Reimao

2:38:39

67 View

Exercise Files

ibm-security-qradar-functions-capabilities.zip

Module 1 - Course Overview

1. Course Overview.mp4

01:20

Module 2 - QRadar Basic Concepts

1. Understanding SIEM Solutions and QRadar.mp4

06:42

2. QRadar Architecture Overview.mp4

08:48

3. QRadar Architecture Examples.mp4

03:36

4. Additional Components Overview.mp4

05:16

Module 3 - Data Collection

1. Understanding Data Collection.mp4

01:44

2. Event Collection.mp4

06:33

3. Data Collection.mp4

03:04

4. Vulnerability Scans.mp4

03:06

Module 4 - Events

1. Understanding Events.mp4

07:05

2. Event Properties.mp4

10:58

3. Additional Information on Events.mp4

06:21

4. Event Search and Visualization.mp4

05:58

5. Ariel Query Language (AQL).mp4

06:39

Module 5 - Flows

1. Understanding Flows.mp4

05:28

2. Flow Properties.mp4

03:31

3. Flow Search and Visualization.mp4

04:43

Module 6 - Offenses

1. Understanding Offenses.mp4

04:46

2. Offense Properties.mp4

04:01

3. Exploring the Offense Tab.mp4

07:51

Module 7 - Rules

1. Understanding Rules.mp4

08:32

2. Rule Types and Exploring the QRadar Rules Interface.mp4

05:44

Module 8 - Assets

1. Understanding Assets.mp4

04:19

2. Asset Properties and Exploring Asset Interface.mp4

06:15

Module 9 - Reports and Dashboards

1. Understanding Reports and Dashboards.mp4

02:16

2. Report Basics.mp4

09:14

3. Dashboard Basics.mp4

04:55

4. Exploring QRadar Dashboards.mp4

06:03

5. Course Closure.mp4

03:51

Description

IBM Security QRadar is one of the most used SIEM solutions in the market. This course will teach you the fundamental knowledge required to work with QRadar in a Security Operations Centre.

What You'll Learn?

The heart of a Security Operations Centre (SOC) is a SIEM solution. It is in this solution that we aggregate all the events and network traffic so we can detect anomalies and threats. In this course, IBM Security QRadar Functions and Capabilities, you’ll learn the essentials about the QRadar SIEM as well as how to use this tool in the day-to-day activities of a SOC. First, you’ll explore the overall QRadar architecture and how it collects data from data sources. Next, you’ll discover how to analyze events and network traffic using the QRadar tool. Finally, you’ll learn how to investigate offenses and generate reports. When you’re finished with this course, you’ll have the skills and knowledge of QRadar needed to deliver the day-to-day tasks of a SOC.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Cyber Security

Ricardo Reimao

Instructor's Courses

Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 14+ years of IT experience, 10 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.