QRadar SIEM: Exploring reports, rules, and offenses (v7.5) – BQ320G

Course Name:

QRadar SIEM: Exploring reports, rules, and offenses (v7.5)

BQ320G

Skill Level:

Intermediate

Modality:

SPVC – Self-Paced Virtual Training

Duration:

0.625 Day/s

Price:
Request Quote

Overview:

Present results of security investigations masterfully to others, refine QRadar data for useful analysis, and investigate security incidents with up-to-date knowledge from MITRE ATT@CK framework.

Communicating the details and statistics from your security investigation and proving your organization’s compliance are CR – Classroom Trainingucial responsibilities. You want to present your findings so that upper management can clearly understand the results. That’s where QRadar reports come in. Gain the skills you need to optimize your QRadar SIEM reports. 

 

Manage your organization’s cybersecurity risks with up-to-date input by comparing your QRadar rules to the MITRE ATT@CK framework and install the updates that it recommends.

 

Customize your organization’s dashboards and put custom rules in place to filter QRadar data. Security analysts appreciate getting the right data to investigate security incidents. 

 

Expand your capabilities in investigating security incidents with QRadar SIEM offenses.


Enroll here

Please enable JavaScript in your browser to complete this form.
Email
Multiple Choice
How did you hear about us?
Yes, I would like to receive special offers from CRS.
Yes, I would like to receive special offers from CRS.


Target Audience:

  • Security Analyst
  • Security Administrator

[List]

Prerequisites:

Topic:

This course covers the following topics:

  • QRadar Reporting and dashboards
  • Custom Rule Engine (CR – Classroom TrainingE)
  • QRadar Use Case Manager app
  • Working with offenses

Objective:

Upon successful completion of this course, you can:

  • Customize and generate QRadar reports
  • CR – Classroom Trainingeate, edit and manage QRadar rules
  • Investigate QRadar offenses

Remarks:

Prior to enrolling, IBM employees must follow their division and department processes to obtain approval to attend this public training class. Failure to follow division and department approval processes might result in the IBM employee being personally responsible for the class charges.

Category:

Security

Product Name:

IBM Security QRadar SIEM

Badge and Certification Info:

NONE

0

Brand: 

Threat Management

Follow on Courses:

 

 

Replaced By:

BQ320;report; rule; CR – Classroom TrainingE; custom rule engine; Reports; Dashboards; offense; filtering; security information and event management

VMWare-Based (XXL) 3 Day SPVC

Lab Access Duration: 30

 

CRS is the top Global Training Provider for some of the world’s biggest brands.

Call Now +27 12 023 1959