IBM QRadar SIEM Advanced Topics
IBM Training for IBM QRadar SIEM Advanced Topics
Skill Level: Advanced
Modality: CR - Classroom based Training or ILO - Instructor Led Online Class
Duration: 2 Day/s
Starting Price: $ - 1,450
Overview:
Can you use QRadar SIEM to correlate various events and flow and trigger alerts of suspicious events? Learn to process uncommon QRadar events, work with reference data, custom rules and actions.
QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, assets, and vulnerabilities. Suspected attacks and policy breaches are highlighted as offenses. This 2-day course walks you through various advanced topics about QRadar such as custom log sources, reference data collections and custom rules, X-Force data and the Threat Intelligence app, UBA and QRadar Advisor, tuning and custom action scripts. The course also discusses integration with IBM SOAR. Hands-on exercises reinforce the skills learned. The lab environment for this course uses the IBM QRadar SIEM 7.4 platform.
Authorized Training delivered to you by the global leader in IBM Training.
Request a Quote
Target Audience:
This course is designed for security administrators and security analysts..
Prerequisites: Students should be knowledgeable about the following topics: IT infrastructure
- IT security fundamentals
- Linux
- Windows
- TCP/IP networking
- Syslog
- Foundational skills for the IBM QRadar Security Intelligence Platform (at least the skills that are taught in the IBM QRadar SIEM Foundations - BQ104 course)
.
Topic:
Unit 1: Custom log sources
Unit 2: Reference data collections and custom rules
Unit 3: IBM X-Force Threat Intelligence in QRadar
Unit 4: User Behavior Analytics and Advisor with Watson
Unit 5: Tuning
Unit 6: Custom action scripts
Unit 7: IBM SOAR integration.
IBM Training
Objective: Learn how to create custom log sources
- Discover how to work with reference data collections and custom rules
- Use X-Force data and Threat Intelligence app
- Use the Use Case Manager app
- Learn how to use UBA and QRadar Advisor
- Discover Tuning
- Explore Custom action scripts
- Discuss Integration with IBM SOAR
Category: Security
Product Name:
IBM Security QRadar SIEM
Badge and Certification Info:
Badge Title: None
Badge ID: None
Brand: Threat Management
IBM Training is available now.
Cyber Retaliator Solutions (CRS) is a Cyber Security Distributor, Authorized IBM Training Center, Red Hat and SUSE Training Partner, and a CompTIA Training Delivery Partner, operating throughout the Globe. Our Head Office is in Centurion South Africa, with IBM Training Centers in Centurion, Midrand, Sandton, Cape Town, California CA, Florida FL, New York NY, Washington DC, Georgia GA, Texas TX.
CRS is the Top Global Training Provider for some of the world's biggest brands.
Authorized Training delivered to you by the global leader in IBM Training.
IBM Cloud
DataPower
IBM Automation
IBM Rational
Watson
IBM Tivoli
IBM Systems
Cognos
IBM Storage
Mainframe
IBM Security
System Z
IBM Industry
IBM Asset Management
Websphere
IBM Data and AI
Get the Best IBM Training from CRS. As an IBM Training Provider, we've partnered with IBM through Arrow ECS to deliver training that covers the full portfolio of IBM systems and software.
Authorized IBM Training
RedHat Training
SUSE Training
Agile SAFe Training
Cyber Awareness Training
Cyber Security
Get the Best IBM Training from CRS. As an IBM Training Provider, we've partnered with IBM through Arrow ECS to deliver training that covers the full portfolio of IBM systems and software.
Authorized IBM Training
RedHat Training
SUSE Training
Cyber Awareness Training
Agile SAFe Training
Cyber Security
CRS offers
IBM Training
and
IBM Certification Training
across
The United States of America
with locations:
4700 Millenia Blvd., Orlando, Florida 32839
250 Park Avenue, New York, New York 10177
4900 California Avenue, Tower B, Bakersfield, California 93309
1300 I Street NW, Washington, District of Columbia 20005
235 W Roosevelt Ave, Albany, Georgia 31701
4400 Buffalo Gap Rd., Abilene, Texas 79606
Follow CRS:
Follow on Courses:
QRadar SIEM Advanced Topics
Replaced By:
This is an advanced course for the QRadar Analyst and Administrator. It replaces BQ203G and is a follow-on to BQ104G.
BQ204 DSM log reference data custom rules actions tuning BQ203 X-Force threat QRadar Advisor SOAR UBA 7.4 SIEM advanced
Vmware-Based (XXL)
QRadar SIEM Advanced Topics
QRadar SIEM Advanced Topics
The price on this page are indicative. Please contact CRS via the above form to confirm pricing.