Network Security Monitoring Engineer
This 10-day training focuses on deploying Elastic Stack in a security context. The focus will be on implementing the various components of the Elastic Stack (Elasticsearch, Kibana, Beats and Logstash) and optimising the performance of these components.
During the training, participants will learn all about the Elastic Stack and its core components and use this knowledge to build Network Security Monitoring (NSM) sensors in different configurations. At the end of the training, participants will be able to build with the Elastic Stack in such a way that they can analyse data sources in their network and systems. This is with the aim of creating a more complete security picture.
For whom is this training intended?
This training is suitable for Security Engineers responsible for installing, using and maintaining the Elastic Stack and network monitoring platforms.
What do you learn during the training?
- Ansible
- Installing, using, maintaining and optimising Zeek
- Installing, using and maintaining Kafka
- Passive operations and tapping
- Installing, using and maintaining CAPES
- Installing, using and maintaining Elastic Stack
- Suricata rule management and tuning
- Sensor troubleshooting
- Engineer capstone event
Want more information about this training? Please contact us.