"Vi hjelper deg å nå dine kompetansemål i 2017"


MasterClass: Microsoft Advanced Threat Analytics Implementing and Managing

Kursavgift: kr 15 000 | Varighet: 3 dager

Beskrivelse:

200+ days. That’s the average amount of time that attackers reside within your network until they are detected, gathering classified data and information, waiting to strike at just the right moment.

The Microsoft Advanced Threat Analytics (ATA) helps to identify breaches and threats using behavioral analysis and provides a clear, actionable report on a simple attack timeline. Customers that want to proactively monitor the environment should be more aware about which activities are malicious, which are good. This is a great challenge when this relates to the hundred-servers environment.


Målgruppe:

Infrastructure architects, security professionals, systems engineers, network administrators, IT professionals, security consultants and other people responsible for implementing network and perimeter security.


Forkunnskaper:

An ideal candidate for this course should have attended Masterclass: Hacking and Securing Windows Infrastructure. You should alternatively have good knowledge on Windows authentication mechanisms and protocols. You should have good understanding of PTH and PTT attacks. Experience in Active Directory Domain Services is highly recommended.


Innhold:

Materials
Author’s unique tools, Exercises and presentations slides with notes.

Module 1: Threat landscape
a. Risks for cloud and on-premise infrastructure
b. Modern threats
c. Incident response flaws

Module 2: ATA Architecture
a. ATA Center
b. ATA Gateway
c. ATA Console
d. Multi-segment networks

Module 3: Prerequisites
a. Active Directory requirements
b. Networking requirements
c. Database requirements
d. Capacity planning
e. Port and protocols

Module 4: Installation
a. Port monitoring
b. Event collection
c. Mobility support
d. Integration to SIEM/Syslog
e. Virtualization issues

Module 5: Detection module
a. Incident responding
b. Short-term lease subnets
c. Honeytokens

Module 6: Analytics module
a. Suspicious Activities Time Line
b. Filtering Suspicious Activities
c. Self-learning

Module 7: Management
a. ATA Console
b. ATA Configuration
c. Alerts
d. Health Center
e. Database management
f. Telemetry

Module 8: Troubleshooting
a. Backup and Restore
b. Logs
c. Performance counters
d. Database
e. Virtualization issues

Module 9: Further steps
a. Advanced monitoring techniques
b. Incident response plans


Bestill kurset her

arrow

Velg kurssted

    arrow

    Velg dato

    kurs merket med * har startgaranti

    arrow

    Mailen er sendt:

    Ditt tips er registrert og sendt!
    Vi håper snarlig å se deg på kurs hos oss!

    Feilmelding:

    OBS! Vi har problemer med å sende ditt tips!

    Vi anbefaler deg å sjekke om du har skrevet inn en gyldig mailadresse.

    Tips sjefen

    Lyst til å delta på dette kurset, men må overbevise sjefen først?

    Glasspaper har laget en tips funksjon, som gjør det enklere for deg å overbevise din sjef om at dette kurset er perfekt for deg.
    Det eneste du trenger å gjøre er å fylle ut kontaktinformasjon, så sender vi relevant informasjon om kurset rett til dine utvalgte kontaktpersoner.
    Bruk gjerne funksjonen til å tipse venner og kollegaer om at dette er et nyttig kurs for dem





    Kontakt oss

    Kursansvarlig

    Hroar Henriksen

    916 70 066

    hroar@glasspaper.no


    Glasspaper er kåret til Årets Microsoft Kurspartner 2017 - dette er åttende år på rad vi mottar denne hedersprisen