QRadar SIEM: Gathering Threat Management Data (v7.5) – bq310gspl
Course #: bq310gspl
Duration: 4 Hours
Are you ready to explain how QRadar processes data in your organization’s environment?
Interpret QRadar log sources (events) and network activity (flows) so you can investigate security incidents with ease.
Knowing how to search the data from QRadar events, flows, and assets means you can streamline your analysis.
Objectives
- Describe the purpose of QRadar SIEM events and flows
- Search QRadar SIEM data effectively
- Manage QRadar SIEM assets
Audience
- Security Analyst
- Security Administrator
Topics
This course covers the following topics:
- QRadar Log Sources
- QRadar Flows and QRadar Log Insights
- QRadar Assets
- Search and filtering