Security Analytics Administration Logo
Powered By

RSA Logo

Security Analytics Administration Training

Live Online & Classroom Enterprise Training

Powered By

RSA Logo

Security Analytics Administration Training provides an overview of RSA Security Analytics, hands-on configuration of components, managing users, and creating filters and rules

Looking for a private batch ?

Key Features
  • Lifetime Access

  • CloudLabs

  • 24x7 Support

  • Real-time code analysis and feedback

  • 100% Money Back Guarantee

SpringPeople Logo

What is Security Analytics Administration training about?

The course provides an overview of RSA Security Analytics hands-on configuration of components managing users and creating filters and rules. Additionally the course covers integration with enVision and monitoring capabilities.

What are the objectives of Security Analytics Administration training?

At the end of Security Analytics Administration training course, participants will learn to:

  • Describe the Security Analytics architecture
  • Describe the Security Analytics Warehouse
  • Describe the licensing process
  • Describe the Security Analytics User Interface
  • Customize the interface
  • Configure and license devices
  • Create device groups
  • Add users and groups
  • Set permissions for users and groups
  • Configure external authentication to Active Directory
  • Set up integration with RSA enVision or event sources
  • Configure data capture including log collection
  • Configure Live Manager
  • Deploy feeds to the Decoder
  • Configure the Reporting Engine
  • Create filters and rules on the Decoder
  • Use the REST API for basic tasks
  • Configure SNMP
  • Monitor the environment
  • Identify and resolve issues
  • Describe the RSA enVision to Security Analytics migration process
Available Training Modes

Live Online Training

Classroom Training



Who is Security Analytics Administration training for?

  • Anyone who wants to add Security Analytics Administration skills to their profile
  • Teams getting started on Security Analytics Administration projects
  • What are the prerequisites for Security Analytics Administration training?

    • Familiarity with networking fundamentals and general information security concepts.
    • Familiarity with Linux.

    Course Outline

    • 1. RSA Security Analytics Overview
      • What is RSA Security Analytics
      • RSA Security Analytics architecture
      • Licensing
      • RSA Security Analytics Data flow
      • Data sources
      • Deployment scenarios
      • The Virtual Environment
      • RSA Security Analytics user interface
      • Customizing the interface
    • 2. Configuring RSA Security Analytics
      • Configuring devices
      • Configuring Live
      • Custom feeds
      • Configuration files
      • Configuring the Reporting Engine
      • Configuring Context Menu Actions
      • Configuring the Warehouse
      • Configuring the Warehouse Connector
      • Configuring the Archiver
      • Configuring Event Stream Analysis (ESA)
      • Configuring Malware Analysis
    • 3. Setting Up Data Collection
      • Setting up capture for packets and log data
      • Configuring log collection
      • Setting up collection for: - File Reader - tWindows - tODBC - tCheck Point - tVMware - tSDEE - tSNMP - tSyslog -
      • Testing data capture
    • 4. Managing Users
      • User administration overview
      • Managing device users
      • Managing RSA Security Analytics users
      • Configuring external authentication (Active Directory)
    • 5. Creating Rules, Reports and Alerts
      • Rules overview - Rules data flow - tBPF - tNetwork rules - tApplication rules - tCorrelation rules -
      • Navigating data
      • Creating Reports
      • Creating Charts
      • Creating Alerts
      • Role Based Access Control
    • 6. Monitoring the environment
      • Viewing statistics
      • Monitoring devices
      • Monitoring query performance
      • Monitoring Concentrator aggregation
      • Tuning the Index
      • Resetting the databases
      • Viewing logs
      • REST API
      • Troubleshooting log collection
      • Crash Reporter
    • 7. Migrating from RSA enVision to RSA Security Analytics
      • Migration overview
      • The Z-Connector
      • Configuring the IPDB Extractor Service
      • Migrating enVision data

    Who is the instructor for this training?

    The trainer for this Security Analytics Administration has extensive experience in this domain, including years of experience training & mentoring professionals.