- Course overview
- Course details
Course overview
About this course
This 2-day course designed to show current challenges security architects face with new and emerging threats and attacks. Malicious activities can be performed by individuals who have administrative access to systems and information using encryption to further compromise networks. These behaviors can be difficult for other tools to identify; Arista NDR looks at network traffic to determine behaviors, and uses AI and ML techniques to identify this suspected malicious behavior. Course candidates will gain a better understanding of challenges faced by legacy protection mechanisms and how Arista’s NDR adds additional information and understanding about network traffic. Candidates will use Arista’s NDR to see the behavior of network traffic and learn how to use the tools to enhance their threat hunting abilities.
Audience profile
It is best suited for individuals with mid-to-senior level experience in network and/or security operations. It is intended for security engineers who manage the security posture of their environment and/or network engineers who are looking to gain a better understanding of malicious behavior on the network. While the expectation is that candidates will be part of medium to large environments, any size of organization will be able to gain a better understanding of network traffic and use the tools to better identify potential threats.
At course completion, you will learn:
Designed to show current challenges security architects face with new and emerging threats and attacks.
Course details
Course Details:
1. Arista NDR Security
- New Network, New Security Approach
- Arista NDR Security Platform
- Arista Zero Trust Security Principles
- Arista NDR + DMF
- NDR Overview and Components
- Case Studies
- Arista Professional Services
2. Architecture, Sizing and PS Installation
- Arista NDR Security Investigation Platform
- Arista NDR Deployments
- Arista NDR Hardware
- Initial Config Elements/Professional Services
3. Navigating Arista NDR Elements
- Dashboards
- Devices and Entities
- Situations
4. Skills, Queries and AML
- Activities
- Queries
- Adversarial Modeling Language
- Skills
5. Integrations
- Splunk Integration with Arista NDR
- Demisto Integration with Arista NDR
- Carbon Black Integration with Arista NDR
- ServiceNow Integration with Arista NDR
- Elasticsearch Integration with Arista NDR
- Crowdstrike Falcon Integration with Arista NDR
- SentinelOne Integration with Arista NDR
6. Labs
- Navigating the interface
- Viewing Device and Domain metadata
- Activities and Searching
- Adversarial Models and Skills
- Automated Threat Hunting
- Situations
Enquiry
Course : Arista Cloud Engineer - Network Detection and Response
Enquiry
request for : Arista Cloud Engineer - Network Detection and Response
