Cisco Stealthwatch Security Training (SSO)

by

Cisco Stealthwatch Security Training (SSO) Course with Hands-On Exercises (Online, Onsite and Classroom Live)

Cisco Learning Credits: 30 CLC

This Cisco Stealthwatch Security Training (SSO) course focuses on using Cisco Stealthwatch Enterprise from the perspective of a security analyst. The overarching goal of the course is to use Stealthwatch to investigate potential security issues and make initial determinations of whether to proceed with a more thorough investigation or to move on to the next potential threat.

SS7 Training OverviewDuration: 2 days

RESOURCES
RELATED COURSES
CUSTOMIZE It
  • We can adapt this Cisco Stealthwatch Security (SSO) course to your group’s background and work requirements at little to no added cost.
  • If you are familiar with some aspects of this Cisco Stealthwatch Security (SSO) course, we can omit or shorten their discussion
  • We can adjust the emphasis placed on the various topics or build the Cisco Stealthwatch Security (SSO) Course around the mix of technologies of interest to you (including technologies other than those included in this outline).
  • If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Cisco Stealthwatch Security (SSO) course in manner understandable to lay audiences.
AUDIENCE/TARGET GROUP

This course is intended for individuals who are responsible for using Stealthwatch to monitor security policy, provide feedback on the configuration, and initiate incident response investigations. An entry-level security analyst is the ideal audience for this class.

  • Customers responsible for completing the initial configuration of the Stealthwatch System into their network.
  • Channel partners responsible for completing the initial configuration of the Stealthwatch System into a customer network.
  • Employees responsible for completing the initial configuration of the Stealthwatch System into a customer network
CLASS PREREQUISITES

The knowledge and skills that a learner must have before attending this Cisco Stealthwatch Security (SSO) course are:

  • It is strongly recommended to complete the Stealthwatch Foundations training prior to taking this course.
Cisco Stealthwatch Security Training (SSO) - OBJECTIVES

Upon completing this Cisco Stealthwatch Security (SSO) course, learners will be able to meet these objectives:

  • Describe how the Stealthwatch System provides network visibility through monitoring and detection.
  • Describe the goals of using Stealthwatch in the proactive and operational modes.
  • Define basic concepts of investigation and detection of potential security issues using the Stealthwatch System.
  • Complete workflows to identify indicators of compromise in your network.
  • Describe alarm types and alarm notification within Stealthwatch.
  • Explain the utility of maps in the Stealthwatch System.
  • Describe how the Stealthwatch System contributes to successful incident handling.
Cisco Stealthwatch Security Training (SSO) - COURSE SYLLABUS

Day One

  • Cisco Stealthwatch Security Course Overview
  • Introduction to Security
  • Using Stealthwatch in the Proactive Mode
  • Pattern Recognition
  • Investigation and Detection Using Stealthwatch
  • Lab: Using Top Reports and Flow Tables for Detection
  • Lab: Creating and Using Dashboards for Detection
  • Lab: Creating Custom Security Events
  • Lab: Proactive Investigation Practice

Day Two

  • Using Stealthwatch in the Operational Mode
  • Alarms and Alarm Response
  • Lab: Responding to Alarms
  • Maps
  • Lab: Using Maps for Incident Response
  • Host Identification
  • Lab: Identify Hosts Using Host Snapshot and Host Report
  • Culminating Scenario: Using Stealthwatch for Insider Threats
  • Security Best Practices in Stealthwatch
  • Cisco Stealthwatch Security Course Outcomes
Cisco Stealthwatch Security Training (SSO) Course Wrap-Up

Whether you are looking for general information or have a specific question, we want to help.
Request More Information

    Time frame: