In-person training
Work efficiently and proactively in your SOC with Security Intelligence
In today’s rapidly changing threat environment, knowing what is happening inside your organization is not enough.
This interactive workshop covering topics including:
- Correlation and enrichment of Indicators of Compromise (IoCs) allowing for quick and confident decisions in a SIEM environment
- Automation and playbook implementation through a SOAR environment
- Incident response and proactive security work best practices
How to monitor your threat landscape; what threat actors are targeting you, and what are their Tactics, Techniques, and Procedures (TTPs)?
Register
More info about training
TARGET AUDIENCE
- Security Analyst
- Security Operations Analyst
- Security Operations Engineer
- SOC Tier 1-3/Level 1-3
- Incident Responder
- Security Architect
PREREQUISITES
Participants are expected to have experience in at least some of the following:
- Using a SIEM environment (e.g. Splunk, QRadar, etc.) with log correlation, triaging, making decisions regarding escalation
- Using a SOAR environment (e.g. XSOAR, Resilient, Phantom, etc.) with some level of utilizing playbooks/workflows with enrichment
- Performing incident response (any level or extent; malware analysis, use of YARA rules, etc.)