top of page
Course Highlights
Hands on Training
Certified & Experienced Trainers
Request for Flexible Timings
Certificate of Completion
Courses
Course Description
CORE Fundamentals Training is a five-day In-person Instructor Led, Virtual Instructor Led, or On-site Instructor Led training course that targets the basic day-to-day analytical and administrative activities performed within the LogRhythm Platform.
About
Target Audience
CORE Fundamentals Training is designed for security analysts, systems and network administrators,engineers, and other LogRhythm users who are responsible for the day-to-day use, basic maintenance, and configuration of the LogRhythm Platform.
Course Pre-Requisite
Participants are required to complete the following computer-based training (CBT) modules prior to arrival at the 310
CORE Fundamentals Training:
Introduction to LogRhythm:
What is a SIEM?
Introduction to LogRhythm: Administrators and Analysts
Course Outline
Day One: Administration Fundamentals
• Introduction to LogRhythm
• Platform Overview
• Object Management with Entities and Lists
• System Monitors
• Log Sources
• Users, Profiles, and Permissions
Day Two: Global Administration
• Reports
• The Knowledge Base, Platform Manager, and Other Settings
• Health Monitoring and Maintenance
• Tuning and Configuration
• Challenge: Restoring Historic Data
• Challenge: Tuning of Log Processing
Day Three: AI Engine Fundamentals
Introduction to AI Engine
• AI Engine Rules
• Threshold and Unique Values Rule Blocks
• Behavioral Rule Blocks
Whitelist
Statistical
Trend
Day Four: Analyst Fundamentals
• The Role of an Analyst
• Navigating the Web Console
• The Analyst’s Tasks
• Customizing the Web Console
• Challenge: Taking Action as an Analyst
Day Five: Security Analytics
• Security 101
• Security Types
• Threat Lifecycle Management in the SIEM
• Practice Exercise: Ransomware Attack
• Challenge: Botnet Detection
• Challenge: Reducing Downtime
• Challenge: Comply with Acceptable Use Policies
Testimonials
Form
bottom of page