Cloud Pak for Security Platform

Cloud Pak for Security Platform Courses:

Installing and Configuring Cloud Pak for Security 1.4

In this course, Forrest Longanecker demonstrates 2 different ways to install and configure Cloud Pak for Security 1.4.

  1. Installing Cloud Pak for Security using the Command Line Interpreter (CLI)
  2. Installing Cloud Pak for Security using the IBM Cloud Catalog

IBM Cloud Pak for Security V1.5 Demonstration

IBM Cloud Pak for Security 1.5 is a unified platform designed to help you detect and respond to security threats with a simple unified experience without replacing your existing tools. This demonstration will show you how IBM Cloud Pak for Security puts the information you need at your fingertips to help mitigate a realistic real-world threat.

Cloud Pak for Security - Case Management app overview

Cloud Pak for Security comes with a Case Management application that integrates with other Cloud Pak for Security applications and provides basic case management capabilities. The main goal of this application is to help security investigations and response to incidents.

In Cloud Pak for Security 1.3, this basic Case Management application is expanded with automation and orchestration capabilities. However, those capabilities are licensed separately.

The video walks you thought the main features and terminology related to the Case Management app and Orchestration and Automation part. You learn about the concept of cases, tasks and phases, artifacts, incident classifications, user roles, simulation of dynamic playbooks. The main concepts for orchestration and automation are reviewed, such as scripts, rules, workflows, functions and message destinations.

Cloud Pak for Security 1.3 Threat Investigation Demonstration

The video demonstrates how a security analyst who uses Cloud Pak for Security 1.3 performs an investigation by seamlessly switching between three apps:

  • Threat Intelligence Insights (focused on incident detection)
  • Date Explorer (focused on incident investigation)
  • Cases (focused on incident response) with SOAR license that provides automation and orchestration of the cases.

IBM Cloud Pak for Security Investigator and Playbook Designer Demonstration
NEW

IBM Cloud Pak for Security is single platform designed to help cyber incident response teams mitigate threats faster by providing all the security information from different tools and log files the investigator needs in one place without having to jump between different applications.
In this use case, Mark Neumann demonstrates how to mitigate damage caused when an employee, who engaged in risky online activities, got his Social Security ID number stolen, and the subsequent attempts to use the stolen credentials to further penetrate the organization's systems.

Giving QRadar SOAR Capabilities with CP4S

In this video, Jose Bravo demonstrates the value that Cloud Pak for Security (CP4S) brings to a QRadar environment. Jose will demonstrate an attack on a Windows system and how QRadar recognizes an offense has occurred and triggers CP4S to take automated remedial action.


Cloud Pak for Security - Users and general settings

Overview

This video provides an overview of users, roles, and general settings for the IBM Cloud Pak for Security platform. The video discusses how a user from LDAP is imported into IBM Cloud Private and then into Cloud Pak for Security. Users can have one of two main roles in Cloud Pak for Security: Admin and regular User. Depending on the role, the user can have different permissions for Data sources, Organization settings, and the User management tool.

Duration: 20 minutes

IBM Cloud Pak for Security: Threat Intelligence Insights demo

IBM Security Threat Intelligence Insights is an app on Cloud Pak for Security that delivers unique and relevant threat intelligence prioritized for your organization. It seamlessly integrates with other apps on Cloud Pak for Security to further continue the investigation and remediation processes.

This video provides a demonstration of the Threat Intelligence Insights app on Cloud Pak for Security.

Duration: 22 minutes

Secure Your Hybrid, Multicloud Environment with Cloud Pak for Security

Businesses today are moving their operations to the cloud piece by piece, with applications and data spread across multiple clouds and on-premise resources. Securing this fragmented IT environment requires security teams to undertake costly migration projects and complex integrations, and continuously switch between different screens and products. This course shows you how IBM Cloud Pak for Security solves this problem!
 

IBM Cloud Pak for Security provides a platform to help more quickly integrate your existing security tools to generate deeper insights into threats across hybrid, multicloud environments, using an infrastructure-independent common operating environment that runs anywhere. You can quickly search for threats, orchestrate actions and automate responses—all while leaving your data where it is.

This course provides a deep dive on Cloud Pak for Security and how it can help solve your challenges. It will also cover Cloud Pak for Security features and capabilities available to use and an architectural overview. There is a demo of Cloud Pak for Security included in this video — to show how everything comes together.

Duration: 59 minutes

IBM Cloud Pak for Security overview

IBM Cloud Pak for Security is a platform to more quickly integrate your existing security tools to generate deeper insights into threats, orchestrate actions and automate responses—all while leaving your data where it is.

This video provides an overview of the IBM Cloud Pak for Security platform.