Services

eIQnetworks Security Analyst

Description	This course guides the user through the navigation of SecureVue. Focus areas are on dashboards and reports where a user can easily access all data from their nodes. The user will gain hands-on experience that is aimed at simplifying their daily use of SecureVue.
Length	2 days
Delivery Method	Instructor-led training
Audience	Security Operators or others involved in the day to day  Security Operations within their organization. Security Analysts
Prerequisites	Knowledge of basic information security infrastructure and data

Training Agenda

Section 1	SecureVue Introduction Introduce users to the functionality available in the SecureVue
Section 2	Security Center Introduction Overview of Security Center Navigation, how to drill down and find the data a user is looking for.
Section 3	“Dashboarding” Learn how to use dashboards as the main focal point in SecureVue. Dashboards have the ability to show data from all nodes and all collection points within SecureVue. Becoming comfortable using and creating dashboards is important for optimal use of SecureVue. Hands On: Users will look for data in dashboards and learn how to create their own dashboards.
Section 4	Correlation Rules –Alerting Understanding the predefined SecureVue Correlation Policies and optimizing them for your environment. Learn the process of creating your own correlation policies. Once alerts have been optimized learning how to treat triggered alerts that have triggered and investigating to determine what caused alert to trigger. Hands On: Drill down into triggered alerts to view what caused the alert to trigger. Customize existing correlation rules and create custom rules in SecureVue.
Section 5	Workflow SecureVue’s built-in ticketing system. Discover how to track and investigate security incidents attaching all incriminating data to a single ticket for easy review of an incident. Hands On: Work through the process of creating a ticket and attaching appropriate data.
Section 6	Reporting Viewing historical data in SecureVue. There are over 1500 reports in SecureVue, the main focus of this section is demonstrate which reports users can find their data in dependent on nodes being monitored in SecureVue. Once users know where to find the data they will have the ability to automate any report on a scheduled basis. Hands On: Users will learn to navigate the reporting tab in the portal. There are numerous exercises designed to learn the different report categories. Users will also setup automated reports in SecureVue.
Section 7	Forensics Learn how to perform Forensics investigation within SecureVue. Hands On: Users will learn how to search for specific data to aid in investigations of incidents.
Section 8	Other tabs in the Security Center Portal Users will learn how to navigate the rest of the Security Center Portal, focusing on the isolated data tabs as a method on investigating possible security incidents in the environment. Hands On: Viewing data in the Security Center Portal outside of reports and dashboards.

© 2010 Copyright eIQnetworks, Inc. | All Rights Reserved Search | Site Map | Contact Us |