IBM Resilient

Click roadmap title to expand/collapse roadmap

Getting Started with IBM Resilient SOAR Platform

The total time required to complete this roadmap is 5h 9m.

This roadmap is designed to provide an initial introduction to Resilient Incident Response Program.

Overview and install

These courses help you to understand how Resilient can be integrated into your environment and provide the tools to get started.

On-premises setup

Learn how to perform the initial configuration to start using Resilient.

User management and authentication

Learn how to configure user access

Common use cases

Learn about typical scenarios for using Resilient.

Badges and Certifications

Official IBM badges and professional certifications related to this role that can be earned

Click roadmap title to expand/collapse roadmap

Playbook Designer/ Developer

The total time required to complete this roadmap is 9h 28m.

This roadmap instructs the designer in the features available for creating playbooks within Resilient

Foundations of Design

These courses are about using the design components which make up a playbook in the Resilient SOAR platform.

Automation and Integrations

These courses teach you about automation of your playbooks in the Resilient SOAR platform.

Click roadmap title to expand/collapse roadmap

Security Analyst

The total time required to complete this roadmap is 48m.

As a Security Analyst you will learn how to manage, use and respond to security events using Resilient playbooks.

Resilient Security Foundations

These courses teach you how to investigate and remediate security incidents using Resilient.

Resilient Dashboards and Reporting

These courses teach you how to create custom dashboards and reports from your incident data

Artifacts and Threat Feeds

These courses will teach you how threat intelligence can perform automatic enrichment for artifacts.

Click roadmap title to expand/collapse roadmap

Privacy Officer

The total time required to complete this roadmap is 37m.

As a Privacy Officer/ Analyst you will learn how to configure Resilient Privacy and to manage, use and respond to privacy events in your organization.

Resilient Privacy Foundations

These courses will teach you how to manage and respond to privacy events using Resilient SOAR platform.

Troubleshooting Resilient and QRadar Integration Open Mic

Experts from the IBM Resilient and QRadar Support teams show the SOC analyst how to safely and effectively troubleshoot their Resilient integration with QRadar when issues arise. This video is a recording of a live Open Mic web seminar originally broadcast on 29-July-2020.

Agenda:

  • How to enable debug and retrieve logs
  • Checking connectivity
  • How to read the logs
  • Using the IBM QRadar API
  • Common errors
  • Opening a case, what next?
  • Questions for the panel


Duration: 26minutes


Developing and Converting Apps for App Host in Resilient

This course was originally broadcast as a live web seminar on 6-June-2020.

Resilient Engineering Manager Mark Scherfling walks us through the features and enhancements associated with building apps in the AppHost environment of IBM Security Resilient SOAR platform v37.


Agenda

  • Review of resilient-sdk
  • App Host for Developers
  • Migrating to App Host
  • Developing for App Host
  • Current Issues
  • Resources & References

Duration: 40 minutes


Resilient and QRadar Integration Open Mic

This video is a recording of the Resilient and QRadar Integration Open Mic web seminar originally broadcast on 17-November-2020.

Agenda

  • Part 1: IBM Resilient (SOAR) QRadar Integration App
    • Installation
    • Configuration (JINJA template)
    • AQL Attachment
    • Syncing notes and offenses status
  • Part 2: QRadar Functions for Resilient
    • Installation of the Functions (AppHost)
    • Examples and demonstration of functions, workflows, rules, and actions that extract the data from QRadar
    • QRadar AQL Search
  • Questions & Answers

Playbook & Workflow Design Best Practices

In this session from Virtual Master Skills University 2020, Benoit Rostagni will show you advanced tips, tricks, and best practices for Playbook and Workflow design.

Dev/Acceptance/Production Best Practices

In this session from Virtual Master Skills University 2020, Benoit Rostagni show you advanced tips, tricks, and best practices for Dev, Acceptance, and Production in Resilient.

Installing and Configuring Integrations for Different Use Cases

In this session from Virtual Master Skills University 2020, Gerald Trotman will demonstrate how to install and configure various integrations for different use cases.

Metrics and Reporting: ROI, KPI, SLA

In this session from Virtual Master Skills University 2020, Benoit Rostagni will teach you advanced tips, tricks, and best practices for metrics and reporting, including ROI, KPI, and SLA.

How to Perform a Health Check on Your Environment

In this session from Virtual Master Skills University 2020, Eric Vervoort will demonstrate the steps to performing a Health Check on your Resilient environment.

The Future of Integrations: App and App Host

In this session from Virtual Master Skills University 2020, Michael Lyons will demonstrate the App Host, Resilient's new integration infrastructure that containerizes integrations and brings integration management into the WebUI, reducing the installation and deployment time of applications to minutes.

What's New with Resilient?

In this session from Virtual Master Skills University 2020, Chris Neely will show you what's new with the latest release of Resilient.

Problem Solving and Debugging

In this session from Virtual Master Skills University 2020, Maurice Williams will explain how to identify and resolve some of the most common troubleshooting topics in Resilient.