Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Pluralsight

Security Event Triage: Leveraging Existing Security Device Alerts

via Pluralsight

Overview

In this course learn how to increase your network security to prevent serious breaches. Gain the knowledge necessary to use continuous monitoring of network logs to improve insure proper security. Get started today!

Identifying suspicious activity on your network can be achieved by analyzing security device logs. In this course, Security Event Triage: Leveraging Existing Security Device Alerts, you'll learn how to analyze security device logs looking for security problems. First, you'll learn about network security devices and the relationship between the OSI model and the ability to decipher the meaning of network traffic captures. Next, you'll see how to analyze firewall logs to identify abnormal activity which could indicate a security compromise, and how analyzing network access control (NAC) logs can identify questionable host and network connectivity for unauthenticated as well as authenticated devices. Finally, you'll explore how to use cloud-based methods such as cloud packet capturing and centralized security monitoring to identify potential security problems in the cloud. When you're done with this course, you'll have the foundational knowledge of continuous monitoring and interpretation of correlated log events needed to gain the best possible picture of network security events.

Taught by

Daniel Lachance

Reviews

Start your review of Security Event Triage: Leveraging Existing Security Device Alerts

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.