Simple play icon Course

IBM Security QRadar Functions and Capabilities

by Ricardo Reimao

IBM Security QRadar is one of the most used SIEM solutions in the market. This course will teach you the fundamental knowledge required to work with QRadar in a Security Operations Centre.

What you'll learn

The heart of a Security Operations Centre (SOC) is a SIEM solution. It is in this solution that we aggregate all the events and network traffic so we can detect anomalies and threats. In this course, IBM Security QRadar Functions and Capabilities, you’ll learn the essentials about the QRadar SIEM as well as how to use this tool in the day-to-day activities of a SOC. First, you’ll explore the overall QRadar architecture and how it collects data from data sources. Next, you’ll discover how to analyze events and network traffic using the QRadar tool. Finally, you’ll learn how to investigate offenses and generate reports. When you’re finished with this course, you’ll have the skills and knowledge of QRadar needed to deliver the day-to-day tasks of a SOC.

About the author

Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 14+ years of IT experience, 10 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.

Ready to upskill? Get started