Creating Advanced ESM Content for Security Use Cases Training

Live Online & Classroom Enterprise Certification Training

Creating Advanced ESM Content for Security Use Cases covers ArcSight security problem solving methodology within the ESM context

Looking for a private batch ?

REQUEST A CALLBACK

Certified Trainer
Authorized Courseware
Completion Certificate from ATP

Enterprise Reporting
Lifetime Access
CloudLabs
24x7 Support
Real-time code analysis and feedback

What is Creating Advanced ESM Content for Security Use Cases Certification Training about?

In this course, you will learn advanced techniques to use ArcSight ESM content to find, track and remediate security incidents specifically identified in the course use cases.

During the training, you will learn to:

• Use variables and correlation activities

• Customize report templates to use dynamic content

• Customize notification templates to send the appropriate notification based upon specific attributes of an event

What are the objectives of Creating Advanced ESM Content for Security Use Cases Certification Training ?

Upon successful completion of this course, you should be able to:

• In an ArcSight ESM context, define a Use Case

• Use the Use Case worksheet from an initial problem statement, generate requirement statements and prioritize objectives

• Identify data sources and ESM resources required to fulfil the objectives of the use case

• To fulfil use case requirements, create identified ESM content

• Construct ArcSight Variables to provide advanced analysis of the event stream

• Develop ArcSight Rules to allow advanced correlation activities

• Build event-based data monitors to provide real-time views of event traffic and anomalies

• Implement custom velocity macros for notification

• Package formulated ESM contents for the Use Case into ArcSight Resource Bundle

Who is Creating Advanced ESM Content for Security Use Cases Certification Training for?

This course is intended for:

• Defining organization’s security objectives

• Building ArcSight ESM content to adhere to those objectives

What are the prerequisites for Creating Advanced ESM Content for Security Use Cases Certification Training?

To be successful in this course, you should have the following prerequisites or knowledge:

• 12 months experience creating ArcSight ESM content (recommended)

• Computer desktop, browser, and file system navigation skills

• Basic understanding of TCP/IP networking and database concepts

• Enterprise security experience [highly advantageous] Plus, an understanding of:

▪ Network device functions and capabilities, such as routers, switches, etc.

▪ Security device functions and capabilities, such as IDS/IPS, firewalls, etc.

▪ TCP/IP networking, file system, and database concepts

▪ SOC Organizational structure and workflow hierarchy

▪ SIEM terminology, such as asset, threat, vulnerability, safeguard, etc.

Available Training Modes

Live Online Training

30 Hours

Classroom Training

5 Days

Course Outline Expand All

Expand All

Module 1: Introduction

ArcSight Use Case primer and course Use Cases

Introduction to the Training Environment

Module 2: Putting it all Together

Use Case – Identifying Disabled User Activity

Use Case – User Activity

Use Case – Critical System Availability

Module 3: Building Advanced Functions in ESM

Using ArcSight Variables and Velocity Macros

Advanced Data Monitors

Working with Advanced Reports

Who is the instructor for this training?

The Trainer is Micro Focus certified Instructor with extensive domain experience, including years of experience training & mentoring professionals in the industry.

Creating Advanced ESM Content for Security Use Cases Certification Training - Certification & Exam

SpringPeople is the Authorized Training Partner of Micro Focus.
The training fees is exclusive of exam cost.
For any queries; feel free to reach us at microfocus@springpeople.com

Reviews

My outlook on training changed completely after attending SpringPeople BPC training. The content, the trainer and infrastructure at SpringPeople were top notch and perfectly in tune with the industry requirements. Regardless to say, training is now something that I look forward to to. Kudos to everyone at SpringPeople!

Shweta Priya

Sony

I attended the 3-day AngularJs training at SpringPeople. The trainer was an industry veteran with vast experience in the subject. Notably, the hands-on training, and the Q&A session stood out. Overall, I found SpringPeople a great place to learn with excellent facilities and great trainers. Would recommend SpringPeople to my colleagues and friends.

Swati Singh

I attended the training on API Design for Mulesoft. The sessions were well planned and value-laden. I benefited immensely from the hands-on experience enabled through virtual labs. I would like to specifically commend the efficiency of the support team who were always available to resolve my concerns.

Nikhil Kohli

Stryker

I attended the jQuery training batch, conducted by Mr. Vijay, an SME who did a thorough coverage of all the essentials. He took us through concepts such as jQuery animations, event handlers, plugins, and jQuery-UI by small programs, very easily. The sessions were useful and well structured. By the end of the training, I was well equipped to develop a SPA on Product Management System. Overall, the learning experience at SpringPeople was great!

Heena Rajan

Mindtree