The future of IBM Maximo: Work Centers and Inspections Can Transform Your Business


Endpoint Detection and Response 4.1 Administration

  • Tuition USD $1,800
  • Reviews star_rate star_rate star_rate star_rate star_half 486 Ratings
  • Course Code EDPRA-4-1
  • Duration 2 days
  • Available Formats Classroom

The Endpoint Detection and Response 4.1 Administration course is designed for the IT security professional in a Security Operations role. This class covers how to detect, investigate, remediate, and recover from an incident using Symantec Endpoint Detection and Response. This course is intended for students who have attended the SEDR 4.1 Fundamentals course or have equivalent knowledge and who are familiar with Symantec Endpoint Protection.

Skills Gained

By the completion of this course, you will be able to:

  • Identify evidence of suspicious and malicious activity
  • Searching for Indicators of Compromise
  • Block, Isolate, and Remove threats in the Environment
  • Collect Forensic Information

Who Can Benefit

The Endpoint Detection and Response 4.1 Core Administration course is intended for students who wish to perform Incident Response activities with Symantec Endpoint Detection and Response.


This course assumes that students have attended the SEDR 4.1 Fundamentals course or have equivalent knowledge. Students should also be familiar with Symantec Endpoint Protection.

Course Details


This course includes practical hands-on exercises that enable you to test your new skills and begin to use those skills in a working environment.

Course Outline

Module 1: Evolving Threat Landscape

  • Challenges of Endpoint Detection and Response in the environment
  • How Symantec Endpoint Detection and Response meets those challenges

Module 2: Increase the visibility of suspicious and malicious activity in the environment

  • Understanding Suspicious & Malicious Activity
  • Prerequisite SEDR configuration or considerations
  • Identifying evidence of suspicious/malicious activity with SEDR
  • Proactive Security Incident Notification with SEDR
  • Understanding Indicators of Compromise
  • Searching for Indicators of Compromise with SEDR

Module 3: Decreasing Security Risk by Responding to Threats in the Environment

  • Prerequisite configuration or considerations
  • Methods used to Isolate threats
  • Isolating threats using SEDR
  • Methods Used to Block threats
  • Blocking threats using SEDR
  • Methods used to remove threats
  • Removing threats using SEDR

Module 4: Collecting and Reporting forensic data for further investigation of security incidents

  • Prerequisite configuration or considerations
  • Information Collected by SEDR
  • Collecting forensic information using SEDR
  • Creating reports with SEDR

How do I enroll?

A comprehensive listing of ExitCertified courses can be found here. You can register directly for the required course/location when you select "register". If you have any questions or prefer to speak with an ExitCertified education consultant directly, please submit your query here. A representative will contact you shortly.

How do I pay for a class?

You can pay at the time of registration using credit card (Mastercard/Visa/American Express) cheque or PO.

What if I have training credits?

ExitCertified honors all savings programs from the partners we work with. ExitCertified also offers training credits across multiple partners through our FLEX Account.

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.


Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

Great Class and Chris was a very knowledgeable instructor. Hoping it prepped me well enough for upcoming exam!

Bill has been outstanding instructor. He has right balance of knowledge and skills to navigate this entire process in a timely manner. Thanks a lot Bill.

ExitCertified consistently delivers excellent courses with highly knowledgeable instructors and robust course content.

well organized and designed course. Tommy is good teacher and answer our all the questions

Gave directions/document with great places to eat and area was very clean Free parking and food in kitchen in the morning

0 options available

There are currently no scheduled dates for this course. If you are interested in this course, request a course date with the links above. We can also contact you when the course is scheduled in your area.

Contact Us 1-800-803-3948
Contact Us Live Chat
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward