Course Description
The key to managing your organization’s risk score is the ability to quickly detect advancing threats, and then prioritize response efforts. InsightIDR helps you identify attack behaviors in the environment through the combined view of log search, endpoint detection, network telemetry, and threat intelligence.
Cybersecurity professionals attending this course will demonstrate the skills and knowledge necessary to:
- Collect log data from valuable data sources
- Search log data using a variety of log query languages
- Deploy deception technologies
- Employ endpoint detection on Insight Agents
- Optimize alert framework to reduce alert fatigue and false positives for your organization
- Contextualize attack alerts by correlating threat intelligence feeds
- Enable the Security Operations Center (SOC) by building a custom analytics framework
- Build efficiencies in to incident response workflows through automation and orchestration
Virtual Instructor-Led Training Classes
- Our classrooms are designed to optimize the learner’s experience, and achieve the greatest outcomes for your Detection and Response program
- Instructor-led sessions delivered via Zoom sessions allow learners to attend training from any location (with access to the internet)
- Practical lab environments made available during training enable an experiential learning experience; creates a safe place to learn
- Class size restricted to ensure each student receives the coaching they need to succeed
- Courses include one attempt to get certified by taking the InsightIDR Certified Specialist exam (additional attempts must be purchased separately)
Click here to view the Education Services training calendar