Skip to main Content

QRadar SOAR: Foundations

  • Course Code BQ405G
  • Duration 2 days

Course Delivery

Virtual Learning Price

SAR7,270.00

excl. VAT

Request Group Training Add to Cart

Jump to:

Course Delivery

This course is available in the following formats:

  • Public Classroom

    Traditional Classroom Learning

  • Virtual Learning

    Learning that is virtual

Request this course in a different delivery format.

Download Course Details

Course Overview

Top

In this course, you learn about the IBM Security® QRadar® SOAR architecture, and how to position the product in your company's security architecture design. You gain hands-on experience with the SOAR interface, by investigating and managing cases and users with the SOAR Breach Response module, playbooks, and email integration.

Virtual Learning

This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.

Course Schedule

Top

Contact us for dates

Request Group Training Dates in Other Countries

Target Audience

Top
  • Security operations center (SOC) Administrator
  • SOC Analyst
  • Security Analyst
  • Incident Responder
  • Managed Service Security Provider (MSSP)
Show me more

Course Objectives

Top

In this course, you learn about the following topics:

  • QRadar SOAR architectural patterns
  • Install the product, and configure license and access
  • Review the SOAR Console
  • Manage cases
  • Utilize the concept of artifacts
  • Utilize case management capabilities
  • Integrate email system for users and case management
  • Focus on the Breach Response module
  • Gain hands-on experience with the SOAR platform
  • Design playbooks
  • Integrate IBM and third-party solutions with SOAR
Show me more

Course Content

Top

Getting started

  • Describe architectural patterns
  • Install the product and configure license and access
  • Review the SOAR Console
  • Manage cases and use Breach Response add-on
  • Utilize the concept of artifacts

Case management and email integration

  • Utilize case management capabilities
  • Integrate email system for users and case management
  • Focus on the Breach Response module

Playbooks and integrations

  • Gain hands-on experience with the SOAR platform
  • Design playbooks
  • Integrate IBM and third-party solutions with SOAR
Show me more