The RSA NetWitness Platform Foundations 11.3 course is designed to equip learners with a comprehensive understanding of the RSA NetWitness Platform, focusing on its key components, architecture, and the rich data it provides for cybersecurity professionals. Through the course, students will delve into the intricacies of the platform, learning how to manage and investigate security data effectively.
Starting with an overview of the RSA NetWitness Platform, students will familiarize themselves with the platform's components, understand how data is managed, and navigate the user interface. The course then progresses to the core of investigations, teaching essential skills such as metadata analysis, distinguishing between packets and logs, customizing investigation screens, and conducting thorough security investigations using queries and data visualizations.
In the subsequent modules, learners will refine their expertise in dataset management, reporting, alerting, and understand how to configure Event Stream Analysis (ESA). They will also learn about incident management with the RESPOND module and gain insights into endpoint security through the Endpoint Insights Agent. The course wraps up with an introduction to User and Entity Behavior Analytics (UEBA) for analyzing behavior patterns and identifying anomalies.
By the end of the course, participants will be well-versed in utilizing the RSA NetWitness Platform to detect and respond to cybersecurity threats, enhancing their organization's security posture.
