Learn what type of intelligence you can get, how collection, normalization and correlation work and what does IBM Qradar SIEM mean through VISIBILITY - this course is a mix intro that bundles some theory and practice exercises
Understand IBM Qradar SIEM and BOOST your Security CAREER!!!
IBM Security QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and the secure storage of events, flows, assets, topologies, and vulnerabilities. IBM QRadar SIEM classifies suspected attacks and policy breaches as offenses.
What are the requirements?
This course assumes some prior knowledge regarding IT infrastructure, IT Security fundamentals, Linux, Windows, TCP/IP networking and log files.
What is the target audience?
This course is designed for security administrators, security analysts, security technical architects, offense managers, network administrators, professional services using IBM QRadar SIEM, IBM QRadar SIEM administrators or any security enthusiast that wants to get security knowledge about Gartner no.1 SIEM platform in the last 6 years, IBM Qradar
Understand the market need and how IBM Qradar SIEM can be part of the picture
Understand how security intelligence can help customers achieve Visibility
Understand what not to expect from IBM Qradar SIEM
What are the questions you should ask in order to generate a SIEM opportunity
Learn why Incident Response is important in cybersecurity
Understand what IBM Qradar SIEM is doing in behind
Understand how IBM Qradar processes alerts
Understand IBM Qradar SIEM components
Understand how IBM Qradar SIEM uses a DSM
Understand how IBM Qradar SIEM is processing a burst
Understand how important a search is in IBM Qradar SIEM platform
Understand how to create a custom DSM
Understand the difference between the 2 types of rules from IBM Qradar SIEM, CRE and ADE rules
Learn the basics of IBM Qradar SIEM console by practice
Learn how System Management is done in IBM Qradar SIEM platform
Learn common settings and what is an asset profile in IBM Qradar SIEM console
Learn how to create a user, a role and a profile in IBM Qradar SIEM plaftorm
Learn how log sources can be created in IBM Qradar SIEM console
Learn how IBM Qradar SIEM platform parses logs
Learn how IBM Qradar SIEM treats the retention of logs and flows
last word from my side
This a quiz that will have the feeling of IBM Security Analyst certification
Highly motivated professional with working experience in IT Information Security Solutions evolving from technical engineer to customer oriented positions as presales/solution/enterprise architect and Information Security Leader, at big companies (> 500) in Central and Eastern Europe (Accenture, Star Storage, Teamnet WPS, IBM, Genpact). Result-oriented individual strongly focused on costumers, trying to offer the best solution based on their needs, capable of implementing complex projects under time pressure, while securing full commitment from key stakeholders.
Working as Technical Architect/Lead for IBM in the last 3 years (SEE – South East Europe region), trying Part of IBM Software Sales group and responsible for IBM Security sales productivity and deal flow by securing the “technical close”. Duties include deep understand in the Security and Cyber client needs and combines leadership skills and technical skills and requires close work with the management team to define scope and timeline and applicability meeting the business goals of the group.
Qradar is my main focus of expertise, being also a successful trainer for clients and partners in my region.
Certifications: CISSP, CISM, CRISC, TOGAF, ITIL-F, LPT, ECSA, CEH, CCNP, CCSP, CCDP, ISO 20000 Lead Auditor, ISO 27001 Lead Auditor, IBM Security QRadar SIEM Certified.