IBM Qradar SIEM by Theory and Practice
4.1 (5 ratings)
Instead of using a simple lifetime average, Udemy calculates a course's star rating by considering a number of different factors such as the number of ratings, the age of ratings, and the likelihood of fraudulent ratings.
45 students enrolled
Wishlisted Wishlist

Please confirm that you want to add IBM Qradar SIEM by Theory and Practice to your Wishlist.

Add to Wishlist

IBM Qradar SIEM by Theory and Practice

Understand all IBM Qradar modules and how they integrate and BOOST your Security CAREER
New
4.1 (5 ratings)
Instead of using a simple lifetime average, Udemy calculates a course's star rating by considering a number of different factors such as the number of ratings, the age of ratings, and the likelihood of fraudulent ratings.
45 students enrolled
Created by Roland Costea
Last updated 8/2017
English
Current price: $21 Original price: $85 Discount: 75% off
4 days left at this price!
30-Day Money-Back Guarantee
Includes:
  • 2.5 hours on-demand video
  • Full lifetime access
  • Access on mobile and TV
  • Certificate of Completion

Training 5 or more people?

Get your team access to Udemy's top 2,000 courses anytime, anywhere.

Try Udemy for Business
What Will I Learn?
  • Learn what type of intelligence you can get
  • how collection, normalization and correlation work
  • what does IBM Qradar SIEM mean through VISIBILITY
View Curriculum
Requirements
  • This course assumes some prior knowledge regarding IT infrastructure, IT Security fundamentals, Linux, Windows, TCP/IP networking and log files
Description

Learn what type of intelligence you can get, how collection, normalization and correlation work and what does IBM Qradar SIEM mean through VISIBILITY - this course is a mix intro that bundles some theory and practice exercises

Understand IBM Qradar SIEM and BOOST your Security CAREER!!!

IBM Security QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and the secure storage of events, flows, assets, topologies, and vulnerabilities. IBM QRadar SIEM classifies suspected attacks and policy breaches as offenses.

What are the requirements?

This course assumes some prior knowledge regarding IT infrastructure, IT Security fundamentals, Linux, Windows, TCP/IP networking and log files.

What is the target audience?

This course is designed for security administrators, security analysts, security technical architects, offense managers, network administrators, professional services using IBM QRadar SIEM, IBM QRadar SIEM administrators or any security enthusiast that wants to get security knowledge about Gartner no.1 SIEM platform in the last 6 years, IBM Qradar

Who is the target audience?
  • security administrators
  • security analysts
  • security technical architects
  • network administrators
  • offense managers
Compare to Other QRadar Courses
Curriculum For This Course
24 Lectures
02:38:56
+
Introduction
1 Lecture 02:06

Learn what to expect from this IBM Qradar SIEM training

Preview 02:06
+
Section 2: Architecture and Concepts behind the IBM Qradar SIEM scene
14 Lectures 01:10:27

Understand the market need and how IBM Qradar SIEM can be part of the picture

2.1 - Cyber Security Trends
04:44

Learn what a SIEM tool does and how IBM Qradar fits the picture

Preview 03:02

Understand how security intelligence can help customers achieve Visibility

2.3 - What type of intelligence do I need?
05:26

Understand what not to expect from IBM Qradar SIEM

Preview 02:37

What are the questions you should ask in order to generate a SIEM opportunity

2.5 - Ask the right questions
04:52

Learn why Incident Response is important in cybersecurity

2.6 - What happens after an attack?
05:49

Understand what IBM Qradar SIEM is doing in behind

2.7 - IBM Qradar SIEM processes
05:36

Understand how IBM Qradar processes alerts

2.8 - IBM Qradar SIEM Offense Engine
05:10

Understand IBM Qradar SIEM components

2.9 - IBM Qradar SIEM Architecture
05:59

Understand how IBM Qradar SIEM uses a DSM

2.10 - What is a DSM?
05:04

Understand how IBM Qradar SIEM is processing a burst

Preview 03:13

Understand how important a search is in IBM Qradar SIEM platform

2.12 - IBM Qradar SIEM Searches
10:02

Understand how to create a custom DSM

2.13 - IBM Qradar SIEM - Custom DSMs
03:38

Understand the difference between the 2 types of rules from IBM Qradar SIEM, CRE and ADE rules

2.14 - IBM Qradar SIEM CRE vs ADE rules
05:15
+
Section 3: IBM Qradar demonstrations
7 Lectures 01:15:34

Learn the basics of IBM Qradar SIEM console by practice

Preview 09:48

Learn how System Management is done in IBM Qradar SIEM platform

3.2 - IBM Qradar SIEM System Management
07:55

Learn common settings and what is an asset profile in IBM Qradar SIEM console

3.3 - IBM Qradar SIEM System Settings and Asset Profiles
19:41

Learn how to create a user, a role and a profile in IBM Qradar SIEM plaftorm

3.4 - IBM Qradar SIEM Users, Roles and Profiles
10:47

Learn how log sources can be created in IBM Qradar SIEM console

3.5 - IBM Qradar SIEM Log Source Extensions
12:37

Learn how IBM Qradar SIEM platform parses logs

Preview 04:12

Learn how IBM Qradar SIEM treats the retention of logs and flows

3.7 - IBM Qradar SIEM Event and Flow Retention Policies
10:34
+
Section 4: Last word from my side and how to continue our journey
2 Lectures 10:49

last word from my side

4.1 - Conclusion
01:10

This a quiz that will have the feeling of IBM Security Analyst certification

Final Quiz
3 questions

4.2 - Passing IBM Qradar exam
09:39
About the Instructor
Roland Costea
4.3 Average rating
17 Reviews
106 Students
4 Courses
Security Architect & Trainer

Highly motivated professional with working experience in IT Information Security Solutions evolving from technical engineer to customer oriented positions as presales/solution/enterprise architect and Information Security Leader, at big companies (> 500) in Central and Eastern Europe (Accenture, Star Storage, Teamnet WPS, IBM, Genpact). Result-oriented individual strongly focused on costumers, trying to offer the best solution based on their needs, capable of implementing complex projects under time pressure, while securing full commitment from key stakeholders.

Working as Technical Architect/Lead for IBM in the last 3 years (SEE – South East Europe region), trying Part of IBM Software Sales group and responsible for IBM Security sales productivity and deal flow by securing the “technical close”. Duties include deep understand in the Security and Cyber client needs and combines leadership skills and technical skills and requires close work with the management team to define scope and timeline and applicability meeting the business goals of the group.

Qradar is my main focus of expertise, being also a successful trainer for clients and partners in my region.

Certifications: CISSP, CISM, CRISC, TOGAF, ITIL-F, LPT, ECSA, CEH, CCNP, CCSP, CCDP, ISO 20000 Lead Auditor, ISO 27001 Lead Auditor,  IBM Security QRadar SIEM Certified.