IBM Security QRadar Functions and Capabilities

IBM Security QRadar is one of the most used SIEM solutions
in the market. This course will teach you the fundamental
knowledge required to work with QRadar in a Security
Operations Centre.

The heart of a Security Operations Centre (SOC) is a SIEM solution. It is in this solution that we aggregate all the events and network traffic so we can detect anomalies and threats. In this course, IBM Security QRadar Functions and Capabilities, you’ll learn the essentials about the QRadar SIEM as well as how to use this tool in the day-to-day activities of a SOC. First, you’ll explore the overall QRadar architecture and how it collects data from data sources. Next, you’ll discover how to analyze events and network traffic using the QRadar tool. Finally, you’ll learn how to investigate offenses and generate reports. When you’re finished with this course, you’ll have the skills and knowledge of QRadar needed to deliver the day-to-day tasks of a SOC.

• Course Overview 1min
• QRadar Basic Concepts 24mins
• Data Collection 14mins
• Events 37mins
• Flows 13mins
• Offenses 16mins
• Rules 14mins
• Assets 10mins
• Reports and Dashboards 26mins