Live Chat
Monday - Friday 8am - 6pm EST Chat Now
Contact Us
Monday - Friday 8am - 8pm EST 1-866-716-6688 Other Contact Options

Cart () Loading...

    • Quantity:
    • Delivery:
    • Dates:
    • Location:


IBM Security QRadar SIEM Foundations

IBM Course Code: BQ102G

Vendor# BQ102G

GK# 2068

Course Overview

QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, assets, and vulnerabilities. Suspected attacks and policy breaches are highlighted as offenses. In this course, you learn to navigate the user interface and how to investigate offenses. You search and analyze the information from which QRadar SIEM concluded a suspicious activity. Hands-on exercises reinforce the skills learned.

Delivery Format Options

  • Classroom Live

    Classroom Live

    Receive face-to-face instruction at one of our training center locations.


    $1695 CAD

    2 day

  • Virtual Classroom Live

    Virtual Classroom Live

    Experience expert-led online training from the convenience of your home, office or anywhere with an Internet connection.


    $1695 CAD

    2 day

  • Self-Paced


    Recordings, hands-on labs and expert instructors empower you to train on your own schedule.


    $720 CAD

    1 session

  • Private Group Training

    Private Group Training

    Train your entire team in a private, coordinated professional development session at the location of your choice.

    Receive private training for teams online and in-person.

Request a date or location for this course.

What You'll Learn

  • Describe the purpose and capabilities of the QRadar SIEM licensed program
  • Describe how QRadar SIEM collects data and performs vulnerability assessment
  • Learn how to navigate and customize the dashboard tab
  • Learn how to investigate the information contained in an offense and respond to an offense
  • Learn ÿhow to find, filter, and group events in order to gain critical insights about the offense
  • Learn how to create and edit a search that monitors the events of suspicious hosts
  • Learn ÿhow asset profiles are created and updated, and how to use them as part of an offense investigation
  • Learn how to investigate the flows that contribute to an offense, create and tune false positives, and investigate superflows
  • Learn ÿhow to find custom rules in the QRadar SIEM console, assign actions and responses to the rule, and how to configure rules
  • Learn how to use charts and apply advanced filters to examine specific activities in your environment

Who Needs To Attend

This basic course is suitable for security analysts, security technical architects, offense managers, network administrators, and system administrators.

Course Outline

Download Course Outline