IBM Security QRadar SIEM Advanced Topics
- Course Code BQ203G
- Duration 2 days
Course Delivery
Jump to:
Course Delivery
This course is available in the following formats:
-
Public Classroom
Traditional Classroom Learning
-
Virtual Learning
Learning that is virtual
Request this course in a different delivery format.
Course Overview
TopThis is an advanced course for the QRadar Analyst and Administrator and is a follow-on to BQ103G.
This course uses the IBM QRadar SIEM 7.3 platform for lab exercises.
Course Schedule
TopTarget Audience
TopThis course is useful for Security administrators, Security technical architects, Offense managers, Professional services using QRadar SIEM, QRadar SIEM administrators.
Course Objectives
TopThe course objctives are:
- Create custom log sources to utilize events from uncommon sources
- Create, maintain, and use reference data collections
- Develop and manage custom rules to detect unusual activity in your network
- Develop and manage custom action scripts to for automated rule reponse
- Develop and manage anomoly detection rules to detect when unusual network traffic patterns occur
Course Content
TopIn this course, you will see:
- Module 1: Creating log source types
- Module 2: Leveraging reference data collections
- Module 3: Developing custom rules
- Module 4: Creating Custom Action Scripts
- Module 5: Developing Anomaly Detection Rules
Course Prerequisites
TopBefore this course, you should be familiar with:
- IT infrastructure
- IT security fundamentals
- Linux
- Microsoft Windows
- TCP/IP networking
- Log files and events
- Network flows
You should also have completed the IBM QRadar SIEM Foundations course.
- /en-be/-/media/global-knowledge/merchandising/right-side-column/emea/gk-polaris/gk-polaris-discover-unlimited-cybersecurity-training-160x600.png https://www.globalknowledge.com/en-be/products/subscriptions/pl-discovery?utm_source=website&utm_medium=banner&utm_campaign=GK-Polaris-security&utm_content=course-overview #000000
- BQ203G
- IBM Security QRadar SIEM Advanced Topics
- Security
- BQ203G | IBM Security QRadar SIEM Advanced Topics | Training Course | IBM.
- IBM