name :
EDU-VCBEDRA
title :
VMware Carbon Black EDR Administrator
RegistrationLink :
https://academy.techdata.com/on-demand/TT-147897
category :
Carbon Black
vendor :
VMware
classroomDeliveryMethod :
Classroom External
descriptions :
description :
This one-day course teaches you how to use the VMware Carbon Black® EDR™ product and leverage the capabilities to configure and maintain the system according to your organization’s security posture and policies. This course provides an in-depth, technical understanding of the Carbon Black EDR product through comprehensive coursework and hands-on scenario-based labs.
ObjectivesBy the end of the course, you should be able to meet the following objectives:
Course Outline1 Course Introduction
ObjectivesBy the end of the course, you should be able to meet the following objectives:
- Describe the components and capabilities of the Carbon Black EDR server
- Identify the architecture and data flows for Carbon Black EDR communication
- Describe the Carbon Black EDR server installation process
- Manage and configure the Carbon Black EDR sever based on organizational requirements
- Perform searches across process and binary information
- Implement threat intelligence feeds and create watchlists for automated notifications
- Describe the different response capabilities available from the Carbon Black EDR server
- Use investigations to correlate data between multiple processes
- VMware Carbon Black EDR
Course Outline1 Course Introduction
- Introductions and course logistics
- Course objectives
- Hardware and software requirements
- Architecture
- Data flows
- Server installation review
- Installing sensors
- Configuration and settings
- Carbon Black EDR users and groups
- Filtering options
- Creating searches
- Process analysis and events
- Filtering options
- Creating searches
- Hash banning
- Search operators
- Advanced queries
- Enabling alliance feeds
- Threat reports details
- Use and functionality
- Creating watchlists
- Use and functionality
- Using the HUD
- Alerts workflow
- Using network isolation
- Using live response
overview :
abstract :
This one-day course teaches you how to use the VMware Carbon Black® EDR™ product and leverage the capabilities to configure and maintain the system according to your organization’s security posture and policies. This course provides an in-depth, technical understanding of the Carbon Black EDR product through comprehensive coursework and hands-on scenario-based labs.
prerequisits :
objective :
topic :
Course Outline1 Course Introduction
- Introductions and course logistics
- Course objectives
- Hardware and software requirements
- Architecture
- Data flows
- Server installation review
- Installing sensors
- Configuration and settings
- Carbon Black EDR users and groups
- Filtering options
- Creating searches
- Process analysis and events
- Filtering options
- Creating searches
- Hash banning
- Search operators
- Advanced queries
- Enabling alliance feeds
- Threat reports details
- Use and functionality
- Creating watchlists
- Use and functionality
- Using the HUD
- Alerts workflow
- Using network isolation
- Using live response
startDate :
2021-01-19T18:35:07Z
endDate :
2021-01-19T18:35:07Z
lastModified :
2020-11-26T17:36:59Z
created :
2020-05-27T14:58:48Z
duration :
1
durationUnit :
DAYS
ibmIPType :
listPrice :
650
currency :
GBP
badge_Template_ID :
badge_Title :
badge_Url :