Course info
January 19, 2018
3h 15m

IBM QRadar is a leader in SIEM solution according to the Gartner Magic Quadrant. In this course, Incident Detection and Investigation with QRadar, you will explore the QRadar main features from a SOC Analyst perspective. First, you will explore what SIEM is and how QRadar provides more functions than a regular SIEM. Next, you will walk through all relevant functionalities provided by the tool and some extra functions, such as risk manager and vulnerability manager. Finally, with the SIEM basics covered, you will dive into incident investigation using QRadar, where you will learn about events, flows, and offences. When you have completed this course, you'll have a foundational knowledge of QRadar incident and detection and skills related to the certification IBM C2150-612 (IBM Security QRadar SIEM V7.2.6 Associate Analyst). Moreover, you will have a full understanding of how to investigate the most common cyber threats using IBM QRadar.

About the author
About the author

Ricardo is a Cybersecurity Consultant based in Ireland. His main specialties are: SIEM solutions, Penetration Testing, Incident Detection and Response, Risk Management and Security Policies.

More from the author
SIEM Administration with QRadar
3h 10m
24 May 2018
Wireless Network Penetration Testing
1h 13m
31 Mar 2017