VMware Carbon Black EDR Advanced Analyst


Vmware Overview

This course will teach the participants of how to use the VMware Carbon Black® EDR™ product during incident response. Using the SANS PICERL framework, you will configure the server and perform an investigation on a possible incident. This course provides guidance on using Carbon Black EDR capabilities throughout an incident with practical labs.

Audience

  • Security operations personnel
  • Security analysts
  • Incident responders

EDR Course schedule & Prices

Course Details Schedule
Live Virtual Classroom (Instructor-Led)
Duration : 1 Day (2 Days for 4 Hours/Day)
Fee : On Request
9 AM - 5 PM (Flexible Time Slots for 4 hours option)




Client's Location
As per mutual convenience
Classroom Training (Available: London, Dubai, India, Sydney, Vancouver)
Duration : On Request
Fee : On Request
On Request
Special Solutions for Corporate Clients. Click here

Enquire Now

Course Prerequisites

  • Completion of VMware Carbon Black EDR Administrator

 Upon completion of this course, you will be able to accomplish:

  • Knowing to utilise the Carbon Black EDR throughout an incident
  • Implementing a baseline configuration for Carbon Black EDR
  • Knowing of how to determine if an alert is a true or false positive
  • To identify the fully scope out an attack from moment of compromise
  • Describing of the Carbon Black EDR capabilities available to respond to an incident
  • Knowing to create addition detection controls to increase security