Elastic SIEM Fundamentals

Training

Course Summary

A powerful SIEM is one of the most important tools a security analyst can wield. In this self-paced, on-demand course, you'll learn how to leverage Elastic SIEM to drive your security operations and threat hunting. This course is designed for security analysts and practitioners who have used other SIEMs or are familiar with SIEM concepts. As a security analyst, you will learn how to stand up and use Elastic SIEM, including exploring its interface, configuring data ingestion, and leveraging prebuilt machine learning jobs to hunt down anomalies. By the end of this course, you will be ready to use Elastic SIEM to detect threats to your infrastructure, enabling you to protect and respond at the speed of Elasticsearch.

Topics Covered

  • Elastic SIEM UI
  • Getting SIEM data in
  • Anomaly detection

Course Details

This course is a module of the Security Analytics specialization. Find out how our focused Training Specializations can help you with your use case.

Audience

Security Analysts and practitioners that has a basic understanding of SIEM in general

Duration

2-3 hours

Prerequisites

Basic understanding of what a SIEM is and typical data involved

Requirements

  • Stable internet connection
  • Mac, Linux, or Windows
  • Latest version of Chrome or Firefox (other browsers not supported)
  • Disable any ad blockers and restart your browser before class