Anatarius - IBM Courses

BQ141G: IBM Security QRadar Vulnerability

Manager 7.2.2 Usage

	Recommended Duration: 1 Day Skill Level: Basic Cost: $1,200 (b/GST)

QRadar SIEM provides deep visibility into network, user, and application activity. It provides collection, normalization, correlation, and secure storage of events, flows, assets, and vulnerabilities. Suspected attacks and policy breaches are highlighted as offenses. In this course, you learn to navigate the user interface and how to investigate offenses. You search and analyze the information from which QRadar SIEM concluded a suspicious activity. Hands-on exercises reinforce the skills learned.

Audience

This basic course is suitable for security analysts, security technical architects, offense managers, network administrators, and system administrators.

Prerequisites

You must have:

Basic TCP/IP networking skills
System administration knowledge
Basic information security skills

Course Agenda

	Scan an asset
	Research and evaluate the detected vulnerabilities
	Assign, remediate, and ignore vulnerabilities
	Describe how the scanner tests for vulnerabilities
	Describe the limitations of scanning
	Use authenticated scans for more comprehensive scan results
	Manage vulnerability instances from different perspectives
	Locate system information in asset profiles
	Describe how QRadar Vulnerability Manager estimates risk

Course Overview

Day 1

Introduction
Detecting and evaluating vulnerabilities
Authenticated scanning
Investigating your environment, assets, and estimated risk