The Trellix Endpoint Detection and Response Administration lab prepares SOC Analysts to understand, communicate, and use the features provided by Endpoint Detection and Response (EDR). Trellix EDR helps to manage the high volume of alerts, empowering analysts of all skill levels to do more and investigate more effectively. Through hands-on lab exercises, you will learn how to detect advanced device threats, fully investigate, and quickly respond.
Course modules:
- Deploying Trelix EDR
- Deploying the Endpoint Clients
- Using Endpoint Security Client
- Configuring Policy Management
- Common Configuration Settings
- Configuring Access Protection policies
- Configuring Exploit Prevention policies
- Configuring On-Access Scan
- Configuring On-Demand Scan
- Configuring Threat Prevention Options
- Configuring Adaptive Threat Protection
- Firewall Overview and Configuring Firewall Options
- Configuring Firewall Rules and Groups
- Configuring Web Control
- Monitoring and Reporting
- Protection Workspace
- Data Exchange Layer and Threat Intelligence
- Configure Real-time Search
- Investigating
- Action History and Performance Metrics
- Troubleshooting EDR
Reviews
There are no reviews yet.