IBM QRadar Security Analyst

ByDipanshu Parashar

(0 Reviews)

Overview
Curriculum
Reviews

QRadar is a SIEM (Security Information Event Management) solution and is one of the top and most recognized security solution in the industry.

QRadar provides deep visibility into the networks, users and applications activity. QRadar provides collection, normalization, correlation, secure storage of events, flows, asset profiles, vulnerabilities and QRadar SIEM classifies suspected attacks and policy violations as offences.

This course will not only help you to understand the fundamentals of IBM QRadar but also will cover major practical aspects that are required to make you job ready QRadar analyst.

Apart from the content, we are offering 2 LIVE CLASSES WITH THE MENTOR in this course which will help you to clear all the doubts and queries !! Future updates are also provided without any additional cost.

Setting up home lab for QRadar in Digital Ocean
- Setting Up Home Lab On Digital Ocean
Installation of QRadar CE
- Install & Post Install
QRadar Architecture
- QRadar Architecture Part 1
- QRadar Architecture Part 2
DSM Install & Upgrade
- DSM Install & Update
Introduction to QRoC
- Introduction to QRoC
Administrative Functions
- AdminTasks
Onboarding Linux As A Log Source in QRadar
- Linux Onboarding and Testing Associated Rules
Understanding Rules
- Rules
Anomaly Detection Engine Rules & Building Blocks & Applying Wincollect Patch t
- ADE Rules & Reference Sets & Wincollect Patching
Wincollect Managed Onboarding & User Creation
- Wincollect Managed & User Creation
Windows Standalone Deployment & Sysmon Integration
- Windows Standlone Deployment & Sysmon Integration
Custom Event Properties & Use Cases
- Custom Event Properties
Reference Material & Guides