IBM QRadar Incident Detection and Response

3 courses
7 hours
Skill IQ

The role of Security Operations Center (SOC) Analyst requires more than simply mastering a SIEM technology. To be a highly skilled professional you must understand the most prevalent security threats and know how to identify key sources of data to perform security investigations. In this path, you will develop the skills required of a SOC Analyst in an IBM QRadar environment. You will learn the process of incident investigation using the IBM QRadar SIEM solution, from detection to remediation and through to reporting. The courses in this path align to the objectives for the IBM QRadar SIEM V7.3.2 Fundamental Analysis (C1000-018) exam which one must pass in order to achieve the IBM Certified Associate Analyst - IBM QRadar SIEM V7.3.2 certification. This series of courses goes beyond the exam objectives to teach additional topics, such as vulnerability management and user behavior analysis (UBA).

Courses in this path

Beginner

In this course you will learn the basics of IBM QRadar, beginning with the features of the SIEM through to how to use it to investigate the most common security incidents.

Incident Detection and Investigation with QRadar 7

by Ricardo Reimao
3h 34m
(56)

Intermediate

In this course you will learn more advanced incident investigation techniques and how you can leverage the IBM QRadar apps.

Incident Detection and Investigation with QRadar Apps

by Ricardo Reimao
1h 53m
(18)

Advanced

In this course you will learn how to deploy a proper vulnerability management program using IBM QRadar Vulnerability Management (QVM).

Vulnerability Management with QRadar

by Ricardo Reimao
1h 32m
(13)

Try for free

Get this learning path plus top-rated picks in tech skills and other popular topics.

Your 10 day free trial includes

Expert-led courses

Keep up with the pace of change with thousands of expert-led, in-depth courses.

For teams

Give up to 50 users access to our full library including this path free for 30 days

What you will learn:

The requisite knowledge for a Security Operations Center (SOC) Analyst in an IBM QRadar environment, including:

How the IBM QRadar SIEM works and how it can be used in the incident process and lifecycle
How to investigate the most prevalent security incident types
How to leverage IBM QRadar security reports and real-time security dashboards
Proactive incident investigation with IBM QRadar apps
How to monitor user behavior with the IBM QRadar UBA app
How to manage vulnerabilities with IBM QRadar
How to investigate vulnerability-related incidents with IBM QRadar
How to manage IBM QRadar system health

Experience

Understanding of fundamental networking concepts
Basic understanding of the most prevalent security incident types

Learn with the best

Ricardo Reimao

Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 14+ years of IT experience, 10 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.

Contact Sales

IBM QRadar Incident Detection and Response