Call : (+91) 968636 4243
Mail : info@EncartaLabs.com
EncartaLabs

Symantec Cyber Security Services Administration

( Duration: 2 Days )

This Symantec Cyber Security Services Administration training course will provide a technical deep dive and hands on experience with Symantec’s Cyber Security Services.

By attending Symantec Cyber Security Services Administration workshop, delegates will learn:

  • Have a solid understanding of the current cyber security market conditions and the need for Cyber Security Services
  • Identify the components of the technical architecture of Symantec’s CSS Services and understand how it integrates with the customer’s environment
  • Understand the Business Objectives achieved by CSS Services
  • Identify the competitive differentiators of Symantec’s CSS Services

  • 1-3 months experience working with the Managed Security Services SOC and Log Collection Platform plus Symantec Managed Security Services Portals (Both DeepSight Intelligence portal and MSS Portal), including performing integration projects with DeepSight Application Programming Interface (APIs).

The Symantec Cyber Security Services Administration class is ideal for:

  • Partners and Symantec staff who are tasked with the configuration, integration, and day-to-day management of Managed Security Services and Deepsight Intelligence.

COURSE AGENDA

1

Overview of Cyber Security Services

  • Current Threat Landscape and the need for CSS
  • Symantec Information Protection Strategy
  • Introduction to Cyber Security Services
2

Managed Security Services Overview

  • Introduction to Symantec Managed Security Services
  • 24x7 Global Threat Monitoring by trained security analysts
  • Timely validation and remediation of security incidents
  • Protect Against Evolving Complexity and Advanced Threats in Cybersecurity
  • Managed Security Services Portal Login Overview
3

Achieving 24x7 Global Threat Monitoring

  • Managed Security Services Architecture
  • 24x7 Global Threat Monitoring by trained security analysts
  • Managed Security Services Portal Overview
4

MSS Platform and Architecture Overview

  • Leveraging Existing SIEMs
  • MSS Log Collection Platform (LCP) Architecture and Transport Methods
  • Providing for Log Aggregation with Symantec Event Agent and Collectors
  • Implementing a Solution Design Onsite
  • Comprehensive Support of Device Types and Log Collection Categories
5

Timely Validation of Security Incidents

  • What is the SOC Technology Platform?
  • Provide for Timely Log Collection and Storage to meet Business Requirements
  • STP Automated Validation Process Decreases Time for Incident Validation
  • Timely Identification, Analysis, and Notification of Security Incidents
6

Protecting Against Advanced Threats by Leveraging Threat Intelligence in MSS

  • The Evolution of Threats
  • Solving the Advanced Threat Problem
  • Leveraging the capabilities of ATP with MSS
7

Security Monitoring and Managed IDS

  • MSS Security Monitoring Solution
  • MSS Managed IDS Solution
8

Managed Security Services Review

  • Review of Symantec Managed Security Services Architecture
  • 24x7 Global Threat Monitoring by trained security analysts
  • Timely validation and remediation of security incidents
  • Protect Against Evolving Complexity and Advanced Threats in Cybersecurity
  • Security Monitoring and Managed IDS Solutions
9

Impact of Security Intelligence

  • The Evolving Threat Landscape
  • On the Nature of Security Intelligence
  • The Value of Security Intelligence Across the Enterprise
  • Intelligence as a Proactive Solution
10

Symantec Deepsight Intelligence Overview

  • Introduction to the Global Intelligence Network
  • Sources of Information in the GIN
  • Managed Adversary Threat Intelligence
  • Additional Sources
11

Provide for Context Aware Threat Intelligence Portal with Delegate Authority based on User and Group Roles

  • DeepSight Portal Access and Layout
  • DeepSight Portal Contents and Navigation
  • Licensing and Portal Levels
  • Configuring the Organization Profile and Licenses
  • Account Management, Users, Roles, and Groups
12

Provide for More Targeted Intelligence and Minimizing Noise by Utilizing Technology Lists

  • Technology List purpose and theory
  • Creating a Technology List
  • Publishing and Sharing Technology Lists
  • Uploading Lists
13

Provide for Timely Alerts and Access to Custom Reporting Based on Customer Policies and Practices

  • Alerts and Monitors Overview
  • Creating an Alert
  • Alert Delivery Methods
  • Mining DeepSight for Custom Reporting
  • Scheduled Reports and Report Delivery
14

Leveraging Threat Intelligence with Existing SIEM Investment in Support of Customer Policies and Practices

  • Datafeed Types and Value
  • The Security Risk Datafeed
  • The Vulnerabilty Datafeed
  • Basic and Advanced IP Reputation Datafeeds
  • Basic and Advanced URL/Domain Reputation Datafeeds
  • Methods of Integration and Tools
  • Datafeed Integration with ArcSight
  • Datafeed Integration with SPLUNK
  • Datafeed Integration with Risk Fabric
15

Integrating DeepSight Threat Intelligence into Custom Applications with the DeepSight API

  • A New Access Method
  • DeepSight API Details
  • DeepSight API Entitlements
16

Deepsight Intelligence Review

Encarta Labs Advantage

  • One Stop Corporate Training Solution Providers for over 6,000 various courses on a variety of subjects
  • All courses are delivered by Industry Veterans
  • Get jumpstarted from newbie to production ready in a matter of few days
  • Trained more than 50,000 Corporate executives across the Globe
  • All our trainings are conducted in workshop mode with more focus on hands-on sessions

View our other course offerings by visiting https://www.encartalabs.com/course-catalogue-all.php

Contact us for delivering this course as a public/open-house workshop/online training for a group of 10+ candidates.

Top
Notice
X