Security Analytics Administration Training Logo
Powered By

RSA Logo

Security Analytics Administration Training

Live Online & Classroom Enterprise Training

Powered By

RSA Logo

Security Analytics Administration Training provides an overview of RSA Security Analytics, hands-on configuration of components, managing users, and creating filters and rules

Looking for a private batch ?

Key Features
  • Lifetime Access

  • CloudLabs

  • 24x7 Support

  • Real-time code analysis and feedback

  • 100% Money Back Guarantee

SpringPeople Logo

What is Security Analytics Administration Training about?

The course provides an overview of RSA Security Analytics hands-on configuration of components managing users and creating filters and rules. Additionally the course covers integration with enVision and monitoring capabilities.

What are the objectives of Security Analytics Administration Training ?

At the end of Security Analytics Administration training course, participants will learn to:

  • Describe the Security Analytics architecture
  • Describe the Security Analytics Warehouse
  • Describe the licensing process
  • Describe the Security Analytics User Interface
  • Customize the interface
  • Configure and license devices
  • Create device groups
  • Add users and groups
  • Set permissions for users and groups
  • Configure external authentication to Active Directory
  • Set up integration with RSA enVision or event sources
  • Configure data capture including log collection
  • Configure Live Manager
  • Deploy feeds to the Decoder
  • Configure the Reporting Engine
  • Create filters and rules on the Decoder
  • Use the REST API for basic tasks
  • Configure SNMP
  • Monitor the environment
  • Identify and resolve issues
  • Describe the RSA enVision to Security Analytics migration process
Available Training Modes

Live Online Training

Classroom Training



Who is Security Analytics Administration Training for?

  • Anyone who wants to add Security Analytics Administration skills to their profile
  • Teams getting started on Security Analytics Administration projects
  • What are the prerequisites for Security Analytics Administration Training?

    • Familiarity with networking fundamentals and general information security concepts.
    • Familiarity with Linux.

    Course Outline

    • 1. RSA Security Analytics Overview
      • What is RSA Security Analytics
      • RSA Security Analytics architecture
      • Licensing
      • RSA Security Analytics Data flow
      • Data sources
      • Deployment scenarios
      • The Virtual Environment
      • RSA Security Analytics user interface
      • Customizing the interface
    • 2. Configuring RSA Security Analytics
      • Configuring devices
      • Configuring Live
      • Custom feeds
      • Configuration files
      • Configuring the Reporting Engine
      • Configuring Context Menu Actions
      • Configuring the Warehouse
      • Configuring the Warehouse Connector
      • Configuring the Archiver
      • Configuring Event Stream Analysis (ESA)
      • Configuring Malware Analysis
    • 3. Setting Up Data Collection
      • Setting up capture for packets and log data
      • Configuring log collection
      • Setting up collection for: - File Reader - tWindows - tODBC - tCheck Point - tVMware - tSDEE - tSNMP - tSyslog -
      • Testing data capture
    • 4. Managing Users
      • User administration overview
      • Managing device users
      • Managing RSA Security Analytics users
      • Configuring external authentication (Active Directory)
    • 5. Creating Rules, Reports and Alerts
      • Rules overview - Rules data flow - tBPF - tNetwork rules - tApplication rules - tCorrelation rules -
      • Navigating data
      • Creating Reports
      • Creating Charts
      • Creating Alerts
      • Role Based Access Control
    • 6. Monitoring the environment
      • Viewing statistics
      • Monitoring devices
      • Monitoring query performance
      • Monitoring Concentrator aggregation
      • Tuning the Index
      • Resetting the databases
      • Viewing logs
      • REST API
      • Troubleshooting log collection
      • Crash Reporter
    • 7. Migrating from RSA enVision to RSA Security Analytics
      • Migration overview
      • The Z-Connector
      • Configuring the IPDB Extractor Service
      • Migrating enVision data

    Who is the instructor for this training?

    The trainer for this Security Analytics Administration Training has extensive experience in this domain, including years of experience training & mentoring professionals.