Security Intelligence Latest

Security Intelligence Latest Courses:

NEW

Use the guided tips in the IBM Security QRadar Use Case Manager app to help you ensure QRadar is optimally configured to accurately detect threats throughout the attack chain.

In this video, you learn about the new features introduced with versions 2.2 and 2.3 of the app.

NEW

Use the guided tips in the IBM Security QRadar Use Case Manager app to help you ensure QRadar is optimally configured to accurately detect threats throughout the attack chain.


In this video, you learn how to explore rules through visualization and generated reports, how to tune your environment based on built-in analysis, and how you can visualize threat coverage across the MITRE ATT&CK framework.

NEW

In this course, you learn about domain and tenant management capabilities in IBM Security QRadar. Managed Security Service Providers (MSSPs) use these capabilities to provide services to their customers in a shared multi-tenant environment. Multi-divisional organizations can benefit from these features as well.

Domain and tenant management capabilities are essential when you want to provide services from a shared QRadar environment. Every internal customer becomes a tenant in your QRadar deployment and each has different requirements. To separate your tenants' data, you define domains.

NEW

Learn the steps required to replace a non-high availability (HA) Console in a QRadar deployment.  In this procedure, the replacement Console is given the same IP address as the original Console.

NEW

The User Behavior Analytics (UBA) app starting version 3.6.0 supports multitenant environments in IBM Security QRadar 7.4.0 Fix Pack 1 and later. Multitenant environments allow Managed Security Service Providers (MSSPs) and multidivisional organizations to provide security services to multiple client organizations from a single, shared QRadar deployment. You don't need to deploy a unique QRadar instance for each customer. With QRadar 7.4.0 Fix Pack 1 or later and UBA 3.6.0, you can create multiple tenants from a single deployment instead of managing multiple deployments. The course walks you through all concepts that are needed to set up the UBA app in a multitenant environment such as log sources, tenants, domains, security profiles, UBA users, and roles.

NEW

Join the IBM Security Learning Services team for an in-depth tour of the Security Learning Academy, with a focus on IBM Security QRadar Security Intelligence course offerings. During this webinar, you will see how to navigate the platform, search the course catalog, enroll in a course, view your enrollments on your dashboard, create progress reports, and see how Security Learning Academy is integrated with IBM VIP Rewards for Security.

Contents

  • Introduction
  • Content requirements process
  • Tour the IBM Security Learning Academy home page
  • Take a deeper look at QRadar Security Intelligence courses and course roadmaps
  • Your personal dashboard
  • Progress reports
  • Integration between the Academy and the IBM VIP Rewards for Security program

NEW

In this course, you learn how to test new and existing log sources in the IBM Security QRadar Log Source Management app.  The testing feature allows you to troubleshoot log source issues.

NEW

A Disconnected Log Collector (DLC) can send events to an IBM Security QRadar deployment from areas that don't require, or can't use the features of Event Collectors or Event Processors.  

In this course, you learn how to register a new DLC, and add the DLC to domains and log sources. You also learn how to import an existing DLC and its log sources into QRadar. Finally, you learn how to export changes that are made to log sources, in the Log Source Management app, back to the DLC.

NEW

This video provides an overview of key Log Source Management app features. In addition to the overview, the video demonstrates how to bulk add and bulk edit log sources, and how to test log sources with the app.

Objectives

  • Learn about the new Disconnected Log Manager feature
  • Explore the Log Source Management app user interface
  • Learn how to bulk add and edit log sources
  • Learn how to test log sources to confirm whether they are configured correctly