Get this course

Logsign Unified Security Operations Platform

Logsign Unified Security Operations Platform - Advanced


Content
  • Data Management
  • Index Management in Logsign
  • Creation Input Filter by Regex
  • Data Management resilience and high availability for Logsign
  • Configuring the Logsign log source parsing order
  • Deployment
  • Understanding Cluster Logsign Roles
  • Large-scale Logsign Deployment Overview
  • Managing Cluster Roles
  • Investigate
  • Determining indicators for threat detection with Logsign
  • Incident Lifecycle Management
  • Incident Management Overview
  • Manage custom rules to detect unusual activity in your network
  • Incident Investigate
  • Detecting Ransomware, Phishing and Malware
  • Windows - Sysmon Use Cases
  • Threat Lifecycle Management
  • User Risk Score and Trend
  • Search Fundamentals
  • Ability to use all lucene techniques query In Incident Management
  • Investigating anomalies by understanding behavior
  • Security Analytics
  • Data Insights and Visualizations with High Possibility Incident Logs
  • Defining / Creating sophisticated reports
  • Troubleshooting
  • Troubleshooting Syslog Log Collector
  • System Notifications and Error Messages
  • Understanding and troubleshooting IO errors
  • Enrichment Technologies
  • Nested Column Architecture
  • Event Mapping Technology
  • Position Based Enrichment Technology
  • Location Based Enrichment Technology
  • Geoip Lookup Service Capability
  • Ldap / AD Connection Enrichment and Modifier Technology
  • Alert Management
  • Understanding Alert Rules
  • Creating a New Alert Rule
  • Analysis of Alerts
  • List & Behaviors
  • Understanding Static List
  • Understanding the Statistical Lists
  • Understanding State Tracker List
  • Understanding Ldap/ AD List
  • Threat Intelligence Service
  • Understanding of Threat Intelligence Service
  • Enablement of Logsign Threat Intelligence
  • Monitoring of Threat Activities
  • Maintenance
  • Source Stats
  • Support Platform
  • EPS Stats Dashboard
  • System Stats (CPU / Disk)
  • QUIZ
  • Logsign Unified Security Operations Platform - Advanced Test
Completion rules
  • All units must be completed
  • Leads to a certificate with a duration: 1 year
Back