The Endpoint Detection and Response 4.1 Administration course is designed for the IT security professional in a Security Operations role. This class covers how to detect, investigate, remediate, and recover from an incident using Symantec Endpoint Detection and Response. This course is intended for students who have attended the SEDR 4.1 Fundamentals course or have equivalent knowledge and who are familiar with Symantec Endpoint Protection.
By the completion of this course, you will be able to:
Identify evidence of suspicious and malicious activity
Searching for Indicators of Compromise
Block, Isolate, and Remove threats in the Environment
Collect Forensic Information
Who Can Benefit
The Endpoint Detection and Response 4.1 Core Administration course is intended for students who wish to perform Incident Response activities with Symantec Endpoint Detection and Response.
This course assumes that students have attended the SEDR 4.1 Fundamentals course or have equivalent knowledge. Students should also be familiar with Symantec Endpoint Protection.
This course includes practical hands-on exercises that enable you to test your new skills and begin to use those skills in a working environment.
Module 1: Evolving Threat Landscape
Challenges of Endpoint Detection and Response in the environment
How Symantec Endpoint Detection and Response meets those challenges
Module 2: Increase the visibility of suspicious and malicious activity in the environment
Understanding Suspicious & Malicious Activity
Prerequisite SEDR configuration or considerations
Identifying evidence of suspicious/malicious activity with SEDR
Proactive Security Incident Notification with SEDR
Understanding Indicators of Compromise
Searching for Indicators of Compromise with SEDR
Module 3: Decreasing Security Risk by Responding to Threats in the Environment
Prerequisite configuration or considerations
Methods used to Isolate threats
Isolating threats using SEDR
Methods Used to Block threats
Blocking threats using SEDR
Methods used to remove threats
Removing threats using SEDR
Module 4: Collecting and Reporting forensic data for further investigation of security incidents
https://www.exitcertified.com/training/symantec/endpoint-management/all/endpoint-detection-response-admin-4-1-57143-detail.htmlEDPRA-4-1Endpoint Detection and Response 4.1 Administrationhttps://assets.exitcertified.com/assets/CourseImages/500c094c5b/AdobeStock_111230966__FitMaxWzEwMDAsMTAwMF0.jpg1800.00USDInStock/Training/Symantec/Endpoint Management/ Endpoint ManagementThe Endpoint Detection and Response 4.1 Administration course is designed for the IT security professional in a Security...1800.00SymantecClassroom2019-06-17T13:28:01+00:00USD