IBM QRadar SIEM Foundations
Institut: ETC - Enterprise Training Center GmbHBereich: Technik, EDV, Telekommunikation
Kursbeschreibung
IBM Security QRadar enables deep visibility into network, endpoint, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, assets, and vulnerabilities. Suspected attacks and policy breaches are highlighted as offenses. In this course, you learn about the solution architecture, how to navigate the user interface, and how to investigate offenses. You search and analyze the information from which QRadar concluded a suspicious activity. Hands-on exercises reinforce the skills learned.
In this 3-day instructor-led course, you learn how to perform the following tasks:
Describe how QRadar collects data to detect suspicious activities
Describe the QRadar architecture and data flows
Navigate the user interface
Define log sources, protocols, and event details
Discover how QRadar collects and analyzes network flow information
Describe the QRadar Custom Rule Engine
Utilize the Use Case Manager app
Discover and manage asset information
Learn about a variety of QRadar apps, content extensions, and the App Framework
Analyze offenses by using the QRadar UI and the Analyst Workflow app
Search, filter, group, and analyze security data
Use AQL for advanced searches
Use QRadar to create customized reports
Explore aggregated data management
Define sophisticated reporting using Pulse Dashboards
Discover QRadar administrative tasks
Extensive lab exercises are provided to allow learners an insight into the routine work of an IT Security Analyst operating the QRadar SIEM platform. The exercises cover the following topics:
- Architecture exercises
- UI Overview exercises
- Log Sources exercises
- Flows and QRadar Network Insights exercises
- Custom Rule Engine (CRE) exercises
- Use Case Manager app exercises
- Assets exercises
- App Framework exercises
- Working with Offenses exercises.
- Search, filtering, and AQL exercises
- Reporting and Dashboards exercises
- QRadar Admin tasks exercises
The lab environment for this course uses the IBM QRadar SIEM 7.5 platform.
After completing this course, you should be able to perform the following tasks:
- Describe how QRadar collects data to detect suspicious activities
- Describe the QRadar architecture and data flows
- Navigate the user interface
- Define log sources, protocols, and event details
- Discover how QRadar collects and analyzes network flow information
- Describe the QRadar Custom Rule Engine
- Utilize the Use Case Manager app
- Discover and manage asset information
- Learn about a variety of QRadar apps, content extensions, and the App Framework
- Analyze offenses by using the QRadar UI and the Analyst Workflow app
- Search, filter, group, and analyze security data
- Use AQL for advanced searches
- Use QRadar to create customized reports
- Explore aggregated data management
- Define sophisticated reporting using Pulse Dashboards
- Discover QRadar administrative tasks
IBM Security QRadar enables deep visibility into network, endpoint, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, assets, and vulnerabilities. Suspected attacks and policy breaches are highlighted as offenses. In this course, you learn about the solution architecture, how to navigate the user interface, and how to investigate offenses. You search and analyze the information from which QRadar concluded a suspicious activity. Hands-on exercises reinforce the skills learned.
In this 3-day instructor-led course, you learn how to perform the following tasks:
Describe how QRadar collects data to detect suspicious activities
Describe the QRadar architecture and data flows
Navigate the user interface
Define log sources, protocols, and event details
Discover how QRadar collects and analyzes network flow information
Describe the QRadar Custom Rule Engine
Utilize the Use Case Manager app
Discover and manage asset information
Learn about a variety of QRadar apps, content extensions, and the App Framework
Analyze offenses by using the QRadar UI and the Analyst Workflow app
Search, filter, group, and analyze security data
Use AQL for advanced searches
Use QRadar to create customized reports
Explore aggregated data management
Define sophisticated reporting using Pulse Dashboards
Discover QRadar administrative tasks
Extensive lab exercises are provided to allow learners an insight into the routine work of an IT Security Analyst operating the QRadar SIEM platform. The exercises cover the following topics:
- Architecture exercises
- UI Overview exercises
- Log Sources exercises
- Flows and QRadar Network Insights exercises
- Custom Rule Engine (CRE) exercises
- Use Case Manager …
mehrweniger lesen
Beginn
12.01.2026
Ende
14.01.2026
Uhrzeit
ca 09:00 - 16:00 Uhr
Dauer
21.0 LE
Ort
VILT
E-Mail
Kontakt
Mathias Leiner
Ort
ETC - Enterprise Training Center
Straße
Modecenterstrasse 22/Office 4
PLZ
1030
Ort
Wien
Land
Österreich
Bundesland
Wien
Tel
Fax
+431533 17 77-85
Before taking this course, make sure that you have the following skills:
- IT infrastructure
- IT security fundamentals
- Linux
- Windows
- TCP/IP networking
- Syslog
Zielgruppe
This course is designed for security analysts, security technical architects, offense managers, network administrators, and system administrators using QRadar SIEM.
Kosten
€ 2.550
exkl. 20% MwSt
exkl. 20% MwSt
Kursnummer
BQ105G
Diese Kurse könnten Sie auch interessieren ...
Uber Weiterbildungsvorschläge
Adobe InDesign Grundlagen
3D-Druck Workshop: Weihnachtsedition. Für Kinder (8-14 Jahre)
Suchmaschinen-Marketing und Suchmaschinen-Optimierung (SEM/SEO) - Einführung
Modul 5 - Gesundheit, Sicherheit, Dienstleistung (3a-3f) - C95/D95 Weiterbildung für Berufskraftfahrer:innen
Modul 5 - Gesundheit, Sicherheit, Dienstleistung (3a-3f) - C95/D95 Weiterbildung für Berufskraftfahrer:innen
Enter Bildbearbeitung
Enter Excel
Enter Word
SEO & SEA - Suchmaschinenoptimierung & Suchmaschinenmarketing
Excel für Controller
Excel für Controller
Excel für Selbsterlernte
Excel für Selbsterlernte
Excel für Selbsterlernte
Power BI Desktop Grundlagen
Power BI Desktop Grundlagen
Power BI Desktop Grundlagen
Power Query Grundlagen
Power Query Grundlagen
Full Stack Development: Java Technologies
Full Stack Development: Java Technologies
Full Stack Development: Java Technologies
Full Stack Development: Java Technologies
EC-Council Computer Hacking Forensic Investigator (CHFI)
Blender - Grundlagen
Adobe Figma - Aufbau
Office ADVANCED Fit für den Job
Office ADVANCED Fit für den Job
Office 2019 Windows 10 Fit am PC
Office 2019 Windows 10 Fit am PC
Keine Angst vor dem PC + 50
Umschulung Office 2013 auf Office 2019
EDV Einführung 50+
Bürofachkraft
Bürofachkraft
Office ADVANCED Fit für den Job
Office ADVANCED Fit für den Job
Office 2019 Windows 10 Fit am PC
Office 2019 Windows 10 Fit am PC
Keine Angst vor dem PC + 50
Umschulung Office 2013 auf Office 2019
EDV Einführung 50+
Bürofachkraft
Bürofachkraft
Google Cloud Fundamentals: Core Infrastructure
HPE Synergy Administration with HPE OneView
OpsRamp Operations, Administration & Implementation
Managing HPE GreenLake for Block Storage MP
Drive Sales with Account Engagement
Concepts and Facilities for HPE NonStop Systems
IBM PowerVM: Implementing Virtualization
Microsoft Dynamics 365 Business Central â VS Code AL Introduction (Part 2: Advanced)
IBM Storage Protect 8.1.13 Advanced Administration, Tuning, and Troubleshooting
Windows Server â Public Key Infrastructure Management & Security (PKI)
EC-Council Certified Network Defender v3
Office Core Fit für das Büro
Office Core Fit für das Büro
Office CORE
Office Core Fit für das Büro
Office Core Fit für das Büro
Office CORE
Baumaschinenführerkurs
Online: Excel Kurs – Datenanalyse mit Pivot Tabelle (PT-12-25)
ISTQB® Certified Tester - Foundation Level v4.0 (CTFL) [DE]
iSAQB® Certified Professional for Software Architecture - Foundation Level (CPSA-F) [DE]
iSAQB® Certified Professional for Software Architecture - Foundation Level (CPSA-F) [EN]
IREB® Certified Professional for Requirements Engineering - Foundation Level (CPRE-FL) [DE]
Microsoft Azure, Administering Azure SQL Solutions
Microsoft Azure, Administering Azure SQL Solutions
Diplomlehrgang ArchiCAD & Lumion
Diplomlehrgang ArchiCAD & 3D Druck
Lehrgang ArchiCAD
ArchiCAD - Grundlagen
ArchiCAD - Grundlagen
Diplomlehrgang Revit & Lumion
Diplomlehrgang Revit & 3D Druck
Lehrgang Revit
Revit - Grundlagen
Revit - Grundlagen
Fusion 360
Lehrgang AutoCAD
Diplomlehrgang AutoCAD, AutoLISP & KI
AutoCAD - Grundlagen
AutoCAD - Grundlagen
Lehrgang SolidWorks
SolidWorks - Grundlagen
SolidWorks - Grundlagen
Ansible, Automation
Ansible, Automation
Diplomlehrgang Rhinoceros 3D / V-Ray / Lumion
Diplomlehrgang Rhinoceros 3D / 3D Druck
Rhinoceros 3D / Lumion - Grundlagen
Rhinoceros 3D / 3D Druck - Grundlagen
Rhinoceros 3D - Grundlagen
Diplomlehrgang SketchUp / V-Ray / Lumion
Diplomlehrgang SketchUp / 3D Druck
SketchUp / Lumion - Grundlagen
SketchUp / 3D Druck - Grundlagen
SketchUp - Grundlagen
Diplomlehrgang 3DS Max / V-Ray / Lumion
Diplomlehrgang 3DS Max / 3D Druck
3DS Max / Lumion - Grundlagen
3DS Max / 3D Druck - Grundlagen
3DS Max - Grundlagen
Unreal Engine für Architektur
Blender / Lumion - Grundlagen
Blender / 3D Druck - Grundlagen
Blender - Grundlagen
Cinema 4D / Lumion - Grundlagen
Cinema 4D / 3D Druck - Grundlagen
Cinema 4D - Grundlagen
Maya - Grundlagen
Lehrgang Programmiersprache Python
Programmiersprache Python - Grundlagen
Programmiersprache Python - Grundlagen
Programmiersprache Java - Grundlagen
Programmiersprache Java - Grundlagen
JavaScript - Grundlagen
JavaScript - Grundlagen
Programmiersprache C
Programmiersprache C++
Programmiersprache C#
HTML/CSS
HTML/CSS
MySQL
MySQL
Adobe Audition
Audacity
Diplomlehrgang Adobe Premiere Pro & After Effects
Adobe Premiere Pro & After Effects - Grundlagen
Adobe After Effects - Grundlagen
Adobe Premiere Pro
Avid Media Composer
DaVinci Resolve
Lehrgang WordPress
WordPress - Grundlagen
WordPress - Grundlagen
Lehrgang UX/UI - Design mit Figma
UX/UI - Design mit Figma - Kompaktkurs
RhinoGold - Grundlagen
RhinoGold - Grundlagen
Diplomlehrgang Adobe Photoshop / InDesign / Illustrator
Adobe Photoshop / InDesign / Illustrator - Grundlagen
Adobe Photoshop / InDesign - Grundlagen
Adobe Photoshop - Grundlagen
Adobe Lightroom
ChatGPT und künstliche Intelligenz in der Praxis (20 UE)
Schaltberechtigung für elektrische Anlagen in Nieder- und Hochspannungsnetzen
Schaltberechtigung für elektrische Anlagen in Nieder- und Hochspannungsnetzen
Prüfung elektrischer Geräte und Elektrowerkzeuge
Ausbildung Brandschutzwart:in
Projektierung, Errichtung und Erweiterung von Hochspannungsanlagen
NEU MIT VR! Hochvolt-Ausbildung HV-3 nach OVE Richtlinie R19
Fortbildung Brandschutzbeauftragte
Fortbildung Brandschutzwart:innen
Brandschutz bei Photovoltaik-Anlagen
XML, Grundlagen
XML, Grundlagen
Windows Server, Hybrid Core Infrastructure
Windows Server, Hybrid Core Infrastructure
Programmierung mit ASP.NET Web APIs
Programmierung mit ASP.NET Web APIs
SQL-Basis - Abfragen und Ändern von Daten
Power Query Fortgeschrittene
Power Query Fortgeschrittene
Vorbereitungskurs auf die Lehrabschlussprüfung Zusatzmodul Systemelektronik
Vorbereitungskurs auf die Lehrabschlussprüfung für Personenkraftwagentechnik
WordPress professionell nutzen - Praxis-Training
Sicherheit in der Software-Entwicklung
Microsoft Dynamics 365 Field Service
Windows 11 Client, Upgrading your Skills to Windows 11
Windows 11 Client, Upgrading your Skills to Windows 11
Microsoft Office 365, Workflows mit SharePoint und PowerAutomate
Microsoft Office 365, Workflows mit SharePoint und PowerAutomate
Arbeiten mit großen Datenmengen in Excel
Workshop 3D-Druck
BricsCAD - 2D-Aufbau
BricsCAD - 2D-Aufbau
Kreative Bildgenerierung mit Künstlicher Intelligenz (KI)
Kreative Bildgenerierung mit Künstlicher Intelligenz (KI)
MS Excel - Expert (Bundle)
MS Excel - Expert (Bundle)
iSAQB® Certified Professional for Software Architecture - Foundation Level (CPSA-F)
iSAQB® Certified Professional for Software Architecture - Foundation Level (English, CPSA-F)
ISTQB Certified Tester - Advanced Level: Test Analyst (CTAL-TA)
IREB Certified Professional for Requirements Engineering - Foundation Level (CPRE-FL)
ISTQB Certified Tester - Foundation Level v4.0 (CTFL)
Querying Data with Microsoft Transact-SQL
Querying Data with Microsoft Transact-SQL
Confluence (Cloud) für Administratoren
Confluence (Cloud) für Administratoren
EXIN Agile Scrum Foundation und Product Owner (Bundle)
EXIN Agile Scrum Foundation und Product Owner (Bundle)
EXIN Agile Scrum Foundation und Master (Bundle)
EXIN Agile Scrum Foundation und Master (Bundle)
MS Excel - Pivot-Tabellen und Power Pivot (Bundle)
MS Excel - Pivot-Tabellen und Power Pivot (Bundle)
AutoCAD - 3D-Konstruktion
AutoCAD - 3D-Konstruktion
EXIN Agile Scrum Foundation
