IBM QRadar SIEM Advanced Topics

IBM QRadar SIEM Advanced Topics

IBM Training for IBM QRadar SIEM Advanced Topics

Skill Level: Advanced

Modality:  CR - Classroom based Training or ILO - Instructor Led Online Class

Duration: 2 Day/s

Starting Price:  $ - 1,450

Overview:

Can you use QRadar SIEM to correlate various events and flow and trigger alerts of suspicious events? Learn to process uncommon QRadar events, work with reference data, custom rules and actions.

QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, assets, and vulnerabilities. Suspected attacks and policy breaches are highlighted as offenses. This 2-day course walks you through various advanced topics about QRadar such as custom log sources, reference data collections and custom rules, X-Force data and the Threat Intelligence app, UBA and QRadar Advisor, tuning and custom action scripts. The course also discusses integration with IBM SOAR. Hands-on exercises reinforce the skills learned. The lab environment for this course uses the IBM QRadar SIEM 7.4 platform.


Request a Quote

Please enable JavaScript in your browser to complete this form.
Email
Multiple Choice
How did you hear about us?
Yes, I would like to receive special offers from CRS.
Yes, I would like to receive special offers from CRS.


Target Audience:

This course is designed for security administrators and security analysts..

Prerequisites: Students should be knowledgeable about the following topics: IT infrastructure

  • IT security fundamentals
  • Linux
  • Windows
  • TCP/IP networking
  • Syslog
  • Foundational skills for the IBM QRadar Security Intelligence Platform (at least the skills that are taught in the IBM QRadar SIEM Foundations - BQ104 course)

 .

Topic:

Unit 1: Custom log sources

Unit 2: Reference data collections and custom rules

Unit 3: IBM X-Force Threat Intelligence in QRadar

Unit 4: User Behavior Analytics and Advisor with Watson

Unit 5: Tuning

Unit 6: Custom action scripts

Unit 7: IBM SOAR integration.

IBM Training

Objective: Learn how to create custom log sources

  • Discover how to work with reference data collections and custom rules
  • Use X-Force data and Threat Intelligence app
  • Use the Use Case Manager app
  • Learn how to use UBA and QRadar Advisor
  • Discover Tuning
  • Explore Custom action scripts
  • Discuss Integration with IBM SOAR

Category: Security

Product Name:

IBM Security QRadar SIEM

Badge and Certification Info:

Badge Title: None

Badge ID: None

Brand: Threat Management

IBM Training is available now.

Cyber Retaliator Solutions (CRS) is a Cyber Security Distributor, Authorized IBM Training Center, Red Hat and SUSE Training Partner, and a CompTIA Training Delivery Partner, operating throughout the Globe. Our Head Office is in Centurion South Africa, with IBM Training Centers in Centurion, Midrand, Sandton, Cape Town, California CA, Florida FL, New York NY, Washington DC, Georgia GA, Texas TX.

CRS is the Top Global Training Provider for some of the world's biggest brands.

Authorized Training delivered to you by the global leader in IBM Training.

IBM Cloud

DataPower

IBM Automation

IBM Rational

Watson

IBM Tivoli

IBM Systems

Cognos

IBM Storage

Mainframe

IBM Security

System Z

IBM Industry

IBM Asset Management

Websphere

IBM Data and AI

Get the Best IBM Training from CRS. As an IBM Training Provider, we've partnered with IBM through Arrow ECS to deliver training that covers the full portfolio of IBM systems and software.

Authorized IBM Training

RedHat Training

SUSE Training

Agile SAFe Training

Cyber Awareness Training

Cyber Security

Get the Best IBM Training from CRS. As an IBM Training Provider, we've partnered with IBM through Arrow ECS to deliver training that covers the full portfolio of IBM systems and software.
Authorized IBM Training
RedHat Training
SUSE Training
Cyber Awareness Training
Agile SAFe Training
Cyber Security

CRS offers

IBM Training

and

IBM Certification Training

across

The United States of America

with locations:

4700 Millenia Blvd., Orlando, Florida 32839

250 Park Avenue, New York, New York 10177

4900 California Avenue, Tower B, Bakersfield, California 93309

1300 I Street NW, Washington, District of Columbia 20005

235 W Roosevelt Ave, Albany, Georgia 31701

4400 Buffalo Gap Rd., Abilene, Texas 79606

Follow CRS:

Follow on Courses:

QRadar SIEM Advanced Topics

Replaced By: 

This is an advanced course for the QRadar Analyst and Administrator. It replaces BQ203G and is a follow-on to BQ104G.

BQ204 DSM log reference data custom rules actions tuning BQ203 X-Force threat QRadar Advisor SOAR UBA 7.4 SIEM advanced

Vmware-Based (XXL)

QRadar SIEM Advanced Topics

QRadar SIEM Advanced Topics

The price on this page are indicative. Please contact CRS via the above form to confirm pricing.

Call Now +27 12 023 1959