-
In this one-day course, you will learn how to use the VMware Carbon Black® Cloud Enterprise EDR™ product and leverage its features to configure and maintain the system according to your organization's security posture and policies. This course provides an in-depth technical understanding of the product through comprehensive course content and hands-on, scenario-based exercises.
-
Course Contents
-
- Course Introduction
- Data Flows and Communication
- Searching Data
- Managing Watchlists
- Alert Processing
- Threat Hunting in Enterprise EDR
- Response Capabilities
You will receive the original course documentation from VMware as an e-book.
-
Target Group
-
Security operations personnel including analysts and managers
-
Knowledge Prerequisites
-
Completion of the following course is required for this course:
- VMware Carbon Black Cloud Fundamentals
| 1 Course Introduction |
| • Introductions and course logistics |
| • Course objectives |
| 2 Data Flows and Communication |
| • Hardware and software requirements |
| • Architecture |
| • Data flows |
| 3 Searching Data |
| • Creating searches |
| • Search operators |
| • Analyzing processes |
| • Analyzing binaries |
| • Advanced queries |
| 4 Managing Watchlists |
| • Subscribing |
| • Alerting |
| • Custom watchlists |
| 5 Alert Processing |
| • Alert creation |
| • Analyzing alert data |
| • Alert actions |
| 6 Threat Hunting in Enterprise EDR |
| • Cognitive Attack Loop |
| • Malicious behaviors |
| 7 Response Capabilities |
| • Using quarantine |
| • Using live response |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.-
In this one-day course, you will learn how to use the VMware Carbon Black® Cloud Enterprise EDR™ product and leverage its features to configure and maintain the system according to your organization's security posture and policies. This course provides an in-depth technical understanding of the product through comprehensive course content and hands-on, scenario-based exercises.
-
Course Contents
-
- Course Introduction
- Data Flows and Communication
- Searching Data
- Managing Watchlists
- Alert Processing
- Threat Hunting in Enterprise EDR
- Response Capabilities
You will receive the original course documentation from VMware as an e-book.
-
Target Group
-
Security operations personnel including analysts and managers
-
Knowledge Prerequisites
-
Completion of the following course is required for this course:
- VMware Carbon Black Cloud Fundamentals
| 1 Course Introduction |
| • Introductions and course logistics |
| • Course objectives |
| 2 Data Flows and Communication |
| • Hardware and software requirements |
| • Architecture |
| • Data flows |
| 3 Searching Data |
| • Creating searches |
| • Search operators |
| • Analyzing processes |
| • Analyzing binaries |
| • Advanced queries |
| 4 Managing Watchlists |
| • Subscribing |
| • Alerting |
| • Custom watchlists |
| 5 Alert Processing |
| • Alert creation |
| • Analyzing alert data |
| • Alert actions |
| 6 Threat Hunting in Enterprise EDR |
| • Cognitive Attack Loop |
| • Malicious behaviors |
| 7 Response Capabilities |
| • Using quarantine |
| • Using live response |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.