McAfee Security Information Event Management (SIEM) Administration Course
The McAfee SIEM Administration course provides attendees with hands-on training on the design, setup, configuration, communication flow, and data source management of SIEM appliances. In addition, students will understand how to effectively implement the appliances in a complex enterprise environment.
Duration: 30hrs
Prerequisites:
System and network administrators, security personnel, auditors, and/or consultants concerned with network and system security should take this course. It is recommended that the students have a working knowledge of Microsoft Windows administration, system administration concepts, a basic understanding of computer security concepts
Course Content:
Module 1: SIEM Overview
Module 2: McAfee Enterprise Security Manager and Receiver Overview
Module 3: McAfee Enterprise Security Manager Interface Views
Module 4: Receiver Data Source Configuration
Module 5: Aggregation
Module 6: Policy Editor
Module 7: Correlation
Module 8: Alarms and Watchlists
Module 9: Reporting
Module 10: Working with McAfee Enterprise Log Manager
Module 11: Troubleshooting and System Management
Module 12: SIEM Workflow