0(0 Ratings)
Symantec Advanced Threat Protection by Broadcom
0(0 Ratings)
Requirements
- It is recommended that students have completed training on Symantec Endpoint Protection prior to attending this course.
Target Audience
- The Symantec Advanced Threat Protection course by Broadcom is designed for security professionals, IT administrators, and anyone responsible for securing their organization's network infrastructure against advanced cyber threats.
About Course
The Symantec Advanced Threat Protection course by Broadcom provides in-depth training on how to use the Symantec Advanced Threat Protection solution to detect, investigate, and respond to advanced cyber threats across an organization's network.
What I will learn?
- This course covers topics such as threat analysis, malware analysis, endpoint detection and response (EDR), network traffic analysis, security analytics, and integration with other security tools.
- Through hands-on exercises and real-world scenarios, students will gain the skills needed to identify and respond to advanced threats on their organization's network infrastructure.
Course Curriculum
Introduction
-
Course overview
00:00 -
What is Symantec Advanced Threat Protection by Broadcom?
00:00 -
Use Case of Symantec Advanced Threat Protection by Broadcom
00:00 -
Features of Symantec Advanced Threat Protection by Broadcom
00:00 -
Installation and Configuration of Symantec Advanced Threat Protection
00:00
How ATP Fits Inside The Cybersecurity Framework
-
Advanced Persistent Threat (APT) review
00:00 -
Stages of an attack
00:00 -
Preventative steps as defined by STAR/Security Response
00:00 -
Cybersecurity core functions
00:00
Introducing ATP
-
Introduction
00:00 -
Shared technologies
00:00 -
Examining the ATP architecture and sizing guide
00:00 -
Becoming familiar with Symantec ATP
00:00 -
Describing views and data analysis per incident response role
00:00
Configuring Global Settings and SEPM Integration
-
Configuring Global Settings
00:00 -
Configuring ATP: Email correlation
00:00 -
Configuring Symantec Endpoint Protection correlation
00:00 -
Configuring ATP and SEP detection and response
00:00
Working with Events and Incidents
-
ATP detection overview
00:00 -
Viewing events
00:00 -
Analyzing Incidents
00:00 -
Analyzing the dashboard
00:00 -
Searching for indicators of compromise (IOC)
00:00
Preparing your SEP Endpoint Environment for Response
-
Configure Host Integrity and Quarantine Firewall policies for ATP quarantine
00:00 -
Configuring the SEP endpoints to communicate with ATP (Insight)
00:00 -
Operational and Alert Mode
00:00
Acting on Threats
-
Isolating breached endpoints
00:00 -
Remediating malicious files and reducing false positives
00:00 -
Responding to threats by blacklisting suspicious addresses
00:00 -
Examining case studies
00:00
Student Ratings & Reviews
No Review Yet
Student Ratings & Reviews
No Review Yet