3 arrows

Get 50% Off ForgeRock Training Bundles

closeClose

Symantec Security Analytics 7.2.x Professional

  • Tuition USD $1,440 List Price $1,800
  • Reviews star_rate star_rate star_rate star_rate star_half 3118 Ratings
  • Course Code SYM-SEC-7-2-x-PRO
  • Duration 2 days
  • Available Formats Classroom

The Symantec Security Analytics Professional course is designed for participants who want to learn how to use the Symantec Security Analytics platform to perform virtually any type of network-based monitoring and forensic analysis, including incident-response investigation, real-time situational awareness, and continuous monitoring for indicators of compromise (IOCs) and advanced persistent threats (APTs). This course covers:

  • How Security Analysis Works
  • File and Artifact Extraction
  • Anomaly Detection and Modeling
  • Data Enrichment
  • Threat Intelligence Services
  • Kill Chain Analysis
  • Indicators of Compromise (IOCs)
  • Malware Integration
  • The Virtual Filesystem (VFS)

Skills Gained

  • Map high-level operational functions to internal system modules and identify how data flows through the system
  • Use reports and extractions to find and analyze relevant data to solve problems
  • Use comparisons and advanced display filters to narrow search results
  • Import/export PCAPs for forensic analysis and archival functions
  • Use actions, alerts, and real-time extractor
  • Use the Security Analytics platform for incident-response
  • Apply kill-chain analysis to discover and describe indicators of compromise
  • Navigate and query the virtual file system

Who Can Benefit

IT or network security professionals who want to master the use of Blue Coat Security Analytics and who have completed the Symantec Security Analytics Administrator course.

Prerequisites

Participants should have a sound understanding of the OSI reference model and common networking protocols, and how those protocols make connections, keep state, and transfer data, along with basic experience with network packet and flow analysis, including the use of PCAP files, tcpdump, and Wireshark. Basic to advanced knowledge of best practices for incident response and continuous monitoring will provide a significant advantage.

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Does the course schedule include a Lunchbreak?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals and private on sites. View our group training page for more information.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals, and private on sites. View our group training page for more information.

Class wentvery well. class base very good. Instructor answered all questions and provided helpful link

Well planned presentations. Live Demo. Excellent labs to ensure comprehension.

Well organized support staff. Second class that I have taken through Tech Data and found it more than a good use of my time.

I am overall very impressed with ExitCertified/Tech Data regarding the Spring Core class outline and iMVP delivery format.

I like the instructor teaching method and well preparedness for the course.

0 options available

There are currently no scheduled dates for this course. If you are interested in this course, request a course date with the links above. We can also contact you when the course is scheduled in your area.

Contact Us 1-800-803-3948
Contact Us
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward