Follow Us on Social
Course Offering
- IT Training
- IT Certification Training
- New Courses
- Course Savings
- Guaranteed To Run Courses
- Fast Lane LIVE E-Learning
- Hack Academy
-
Fast Lane IT Workshops»
- Fast Lane Training
- Guaranteed Dates
- Public Schedule
- Featured Topics
- Professional Services
- Training by Vendor
- Amazon Web Services»
- Arista Training
- Aruba»
- Barracuda»
- Cisco»
- EC-Council
- Gigamon
- Google Cloud»
- Microsoft»
- NetApp»
- Palo Alto Networks»
- Red Hat»
- Splunk»
- Wireshark / Packet Analysis
- VMware»
-
Other Vendors»
- AudioCodes
- Avaya
- Brocade
- Check Point
- Citrix
- CompTIA
- CWNP
- Cybersec First Responder
- Cydrill Application Security
- Extreme Networks
- F5 Networks
- Fortinet Training
- HPE
- Infoblox
- Juniper Networks
- KnowBe4
- Micro Focus
- Oracle
- Pulse Secure
- Ribbon
- Ruckus
- Salesforce
- SUSE
- Symantec
- Trend Micro
- UNIX/Linux Training
- Veeam
- ITIL & Project Management»
- PRINCE2®
- Scaled Agile
- Training by Technology
- Artificial Intelligence (AI)
- Cloud Computing
- Cyber Security
- Data Center
- DevOps Software Deployment
- End User Training
- Software Development
- Wireless & Mobility
- Professional Services
- Consulting & Professional Services
VMware Carbon Black Cloud Enterprise EDR
Overview
This one-day course teaches you how to use the VMware Carbon Black® Cloud Enterprise EDR™ product and leverage its capabilities to configure and maintain the system according to your organization’s security posture and policies. This course provides an in-depth, technical understanding of the product through comprehensive coursework and hands-on scenario-based labs.
Product Alignment
- VMware Carbon Black® EDR™
- VMware Carbon Black Cloud Endpoint™ Enterprise
Who should attend
Security operations personnel, including analysts and managers
Prerequisites
This course requires completion of the following course:
- VMware Carbon Black Cloud Fundamentals
Course Objectives
By the end of the course, you should be able to meet the following objectives:
- Describe the components and capabilities of VMware Carbon Black Cloud Enterprise EDR
- Identify the architecture and data flows for VMware Carbon Black Cloud Enterprise EDR communication
- Perform searches across endpoint data to discover suspicious behavior
- Manage watchlists to augment the functionality of VMware Carbon Black Cloud Enterprise EDR
- Create custom watchlists to detect suspicious activity in your environment
- Describe the process for responding to alerts in VMware Carbon Black Cloud Enterprise EDR
- Discover malicious activity within VMware Carbon Black Cloud Enterprise EDR
- Describe the different response capabilities available from VMware Carbon Black Cloud
Product Description
Course Introduction
- Introductions and course logistics
- Course objectives
Data Flows and Communication
- Hardware and software requirements
- Architecture
- Data flows
Searching Data
- Creating searches
- Search operators
- Analyzing processes
- Analyzing binaries
- Advanced queries
Managing Watchlists
- Subscribing
- Alerting
- Custom watchlists
Alert Processing
- Alert creation
- Analyzing alert data
- Alert actions
Threat Hunting in Enterprise EDR
- Cognitive Attack Loop
- Malicious behaviors
Response Capabilities
- Using quarantine
- Using live response
