RSA Certified Security Analytics Administration Training

Live Online & Classroom Certification Training

Security Analytics Administration Training provides an overview of RSA Security Analytics, hands-on configuration of components, managing users, and creating filters and rules

(4.7) 74 Learners
Instructed by SPRINGPEOPLE

No Public/Open-house class on the topic scheduled at the moment!

Course Description


The course provides an overview of RSA Security Analytics hands-on configuration of components managing users and creating filters and rules. Additionally the course covers integration with enVision and monitoring capabilities.


At the end of Security Analytics Administration training course, participants will learn to:

  • Describe the Security Analytics architecture
  • Describe the Security Analytics Warehouse
  • Describe the licensing process
  • Describe the Security Analytics User Interface
  • Customize the interface
  • Configure and license devices
  • Create device groups
  • Add users and groups
  • Set permissions for users and groups
  • Configure external authentication to Active Directory
  • Set up integration with RSA enVision or event sources
  • Configure data capture including log collection
  • Configure Live Manager
  • Deploy feeds to the Decoder
  • Configure the Reporting Engine
  • Create filters and rules on the Decoder
  • Use the REST API for basic tasks
  • Configure SNMP
  • Monitor the environment
  • Identify and resolve issues
  • Describe the RSA enVision to Security Analytics migration process

Suggested Audience -

RSA Security Analytics Administrators

Duration - 3 Days


  • Familiarity with networking fundamentals and general information security concepts.
  • Familiarity with Linux.

Course Curriculum

Expand All
  • What is RSA Security Analytics
  • RSA Security Analytics architecture
  • Licensing
  • RSA Security Analytics Data flow
  • Data sources
  • Deployment scenarios
  • The Virtual Environment
  • RSA Security Analytics user interface
  • Customizing the interface
  • Configuring devices
  • Configuring Live
  • Custom feeds
  • Configuration files
  • Configuring the Reporting Engine
  • Configuring Context Menu Actions
  • Configuring the Warehouse
  • Configuring the Warehouse Connector
  • Configuring the Archiver
  • Configuring Event Stream Analysis (ESA)
  • Configuring Malware Analysis
  • Setting up capture for packets and log data
  • Configuring log collection
  • Setting up collection for: - File Reader - tWindows - tODBC - tCheck Point - tVMware - tSDEE - tSNMP - tSyslog -
  • Testing data capture
  • User administration overview
  • Managing device users
  • Managing RSA Security Analytics users
  • Configuring external authentication (Active Directory)
  • Rules overview - Rules data flow - tBPF - tNetwork rules - tApplication rules - tCorrelation rules -
  • Navigating data
  • Creating Reports
  • Creating Charts
  • Creating Alerts
  • Role Based Access Control
  • Viewing statistics
  • Monitoring devices
  • Monitoring query performance
  • Monitoring Concentrator aggregation
  • Tuning the Index
  • Resetting the databases
  • Viewing logs
  • Troubleshooting log collection
  • Crash Reporter
  • Migration overview
  • The Z-Connector
  • Configuring the IPDB Extractor Service
  • Migrating enVision data


SpringPeople works with top industry experts to identify the leading certification bodies on different technologies - which are well respected in the industry and globally accepted as clear evidence of a professional’s “proven” expertise in the technology. As such, these certification are a high value-add to the CVs and can give a massive boost to professionals in their career/professional growth.

Our certification courses are fully aligned to these high-profile certification exams; at the end of the course, participants will have detailed knowledge, be eligible and be fully ready take up these certification exams and pass with flying colours.



SpringPeople Corporate Learning Center

About the Instructor

Founded in 2009, SpringPeople is a global premier eLearning marketplace for Online Live, Instructor-led classes in the region. It is a certified training delivery partner of leading technology creators, namely Pivotal, Elastic, Lightbend, EMC, VMware, MuleSoft, RSA, and... Read More

Course Rating and Reviews


Average Rating
5 Stars
4 Stars
3 Stars
2 Stars
1 Star

SPRINGPEOPLE SpringPeople Trainer

Richa Sinha

Course Material:
Class Experience:
There should be an inclusion of the best practices.

SPRINGPEOPLE SpringPeople Trainer

Lohith MV

Tech Lead
Pramata Knowledge Solutions
Course Material:
Class Experience:
I felt course went little slow, we should have covered more topics

SPRINGPEOPLE SpringPeople Trainer

Madhav NV

Product Manager
Sonata Software
Course Material:
Class Experience:

This class is intended for participants with some prior exposure to the technology and are now looking to build up their expertise on the topic.

On successful completion of the course, participants will be eligible to sit of the related certification exam (see course overview). All participants receive a course completion certificate, demonstrating their expertise on the subject.

Total duration of the online, live instructor led sessions. Sessions are typically delivered as short lectures (2-hrs weekdays/3-hrs weekends) and detailed hands-on guidance.

Expected offline lab work hours that participants will need to complete and submit to the trainer, during and after the instructor-led online sessions.

  1. We are happy to refund full fee paid - no questions asked - should you feel that the training is not up to your expectations.
  2. Our dedicated team of expert training enablement advisors are available on email, phone and chat to assist you with your queries.
  3. All courseware, including session recordings, will always be available to access to you for future reference and rework.

Contact Us

1800-313-4030 (BLR)

Schedule a Call

Related Courses

Recently Viewed