ATD 4.10: NAM 4-Day Advanced Threat Detection Administration

Training Overview

Our Trellix Intelligent Sandbox with DXL & TIE Administration training provides an in-depth look at each of the products & how they integrate. In this training, you will learn the tasks crucial to set up, administering, & managing Trellix Intelligent Sandbox (TIS), Data Exchange Layer (DXL), & Threat Intelligence Exchange (TIE) solutions. This combined solution enables you to get better visibility of your environment, protecting & limiting exposure to threats & vulnerabilities. This training combines lectures & practical lab exercises with significant time allocated for the hands-on interaction with the TIS, DXL, & TIE user interfaces, as well as the detailed instructions for the integration of this solution.

Duration: 4 days

Prerequisites

  • Basic knowledge of network concepts & protocols (TCP/IP) 
  • Basic understanding of routing & connecting flow (LAN, WAN, Internet)
  • Basic knowledge of Operating Systems (Windows & Linux) 

Working knowledge of ePolicy Orchestrator (ePO)

Audience Profile

This training is intended for system & network administrators, security personnel, auditors, and/or professionals concerned with network & system security. It is recommended that the professionals have a basic knowledge of network concepts & protocols (TCP/IP), a basic understanding of routing & connecting flow (LAN, WAN, Internet), basic knowledge of Operating Systems (Windows/Linux), & a working knowledge of ePolicy Orchestrator.

Learning Objectives:

This training focuses on enabling you to do the following: 

  • Become familiar with ePO information & support resources & feedback mechanisms.
  • Describe the integration framework, how to integrate products with TIS, & the use case for dealing with threats.
  • Describe the TIS solution, its features, & its functionality
  • Describe how to install the TIS appliance & configure the initial settings.
  • Describe how to configure settings on the TIS appliance.
  • Describe how to create Virtual Machines (VMs) & Analyzer Profiles on TIS
  • Describe how to perform malware analysis, view analysis status, analyze reports, & generate reports on TIS.
  • Describe a TIS cluster, configure, & destroy TIS clustering & network connections

Content Outline

  • Welcome
  • Products Integration
  • Trellix Intelligent Sandbox Solution Overview
  • TIS Installation & Setup
  • Configuring TIS Appliance Settings
  • Creating Virtual Machines in TIS
  • Malware Analysis in TIS
  • Configuring TIS Cluster
  • Managing Content & Basic Troubleshooting in TIS
  • Data Exchange Layer Overview
  • Threat Intelligence Exchange Overview
  • What is Endpoint Detection & Response?
  • DXL & TIE Installation
  • Managing, Configuring, & Troubleshooting DXL
  • Configuring & Using TIE
  • TIS Integration with ePO, DXL, TIE, AR, & EDR
  • TIS Integration with SWG & NSP
  • TIS Integration with Email Connector & ESM

FAQs

Our Trellix Intelligent Sandbox with DXL & TIE Administration training provides an in-depth look at each of the products & how they integrate. In this training, you will learn the tasks crucial to set up, administering, & managing Trellix Intelligent Sandbox (TIS), Data Exchange Layer (DXL), & Threat Intelligence Exchange (TIE) solutions. This combined solution helps you to gain better visibility of your environment, protecting & limiting exposure to threats & vulnerabilities.

The term Sandbox Detection refers to a variety of evasion techniques that malware uses to determine whether or not it is being identified & executed within a sandbox.

McAfee ePolicy Orchestrator (ePO) is a centralized, scalable, extensible platform for security policy management & enforcement of enterprise networks & endpoints. This product provides users with comprehensive reporting & security software deployment capabilities.

Basic knowledge of network concepts & protocols (TCP/IP) 

  • Basic understanding of routing & connecting flow (LAN, WAN, Internet)
  • Basic knowledge of Operating Systems (Windows & Linux) 
  • Working knowledge of ePolicy Orchestrator (ePO)

Radiant Tech Learning has a data centre containing a Virtual Training environment for the purpose of professional hand-on-practice. Professionals can easily access these labs over Cloud with the help of a remote desktop connection. Radiant virtual labs provide you with the flexibility to learn from anywhere in the world & at any time.

The learners will be enthralled as we engage them the real-world & Oriented industry projects during the training program. These projects will improve your skills & knowledge, & you will gain a better experience. These real-time projects will help you a lot in your future tasks & assignments

You can request a refund if you do not wish to enroll in the training.

Radiant has highly intensive selection criteria for Technology Trainers & Professionals who deliver training programs. Our trainers & professionals undergo rigorous technical & behavioural interview & assessment processes before they are on-boarded in the company.

Our Technology experts/trainers & professionals carry deep-dive knowledge in the technical subject & are certified by the OEM.

Our training programs are practically oriented with 70% – 80% hands-on training technology tools. Our training program focuses on one on one interaction with each professional, the latest content in the curriculum, real-time projects & case studies during the training program.

Our faculty will provide you with the knowledge of each training from the fundamental level in an easy way & you are free to ask your doubts any time from your respective faculty.

Our trainers have patience & ability to explain difficult concepts in a simplistic way with depth & width of knowledge.

To ensure quality learning, we provide a support session even after the training program.

Send a Message.


  • Enroll