Endpoint Detection and Response 4. x Planning, Implementation, and Administration R1

Course Description

The Symantec Endpoint Detection and Response 4. x Planning, Implementation, and Administration course are developed for the IT security & systems administration professional in a Security Operations role. This course includes how to investigate, remediate, & recover from a security incident utilizing Symantec Endpoint Detection & Response and the prerequisite sizing & architecture configurations for implementing Symantec Endpoint Detection & Response On-Prem.

Prerequisites

This course assumes students are familiar with Symantec Endpoint Detection & Response and Symantec Endpoint Protection.

Target Audience

Hands-On

This course includes practical hands-on exercises that enable you to test your new skills and begin to use those skills in a working environment.

 

Learning Objectives

By the completion of this course, you will be able to-

  • Plan and implement a Symantec Endpoint Detection and Response deployment
  • Configure SEDR to perform endpoint detection and response
  • Identify evidence of suspicious and malicious activity
  • Search for indicators of compromise
  • Block, isolate, and remove threats in the environment
  • Collect forensic information

Content Outline

  • The Evolving Threat Landscape
  • Challenges of Endpoint Detection and Response in the environment
  • How Symantec Endpoint Detection and Response meets objectives
  • Components of Symantec Endpoint Detection and Response
  • Shared Technologies
  • Symantec Endpoint Detection and Response Add-Ons and Integrations
  •   Architecture and Sizing Overview
  •   Architecture
  •   Sizing
  •   System Requirements
  •   Installing and Bootstrapping
  •   Setup Wizard
  •   Management Console Overview
  •   Managing Certificates
  •   User Accounts and Roles
  •   Symantec Endpoint Protection Integration
  • Understanding Suspicious & Malicious Activity
  • Prerequisite configuration or considerations
  • Identifying evidence of suspicious/malicious activity with Symantec EDR
  • General Stages of an Advanced Attack
  • Understanding Indicators of Compromise
  • Searching for Indicators of Compromise
  • Analyzing Endpoint Activity Recorder Data
  • Additional Investigation Tools
  • Cybersecurity Framework
  • Isolating Threats in The Environment
  • Blocking Threats in The Environment
  • Removing Threats in The Environment
  • Tuning the Environment
  • Recovery Overview
  • Notifications and Reporting
  • Collecting forensic data for further investigation of security incidents
  • Using Symantec EDR to create a Post Incident Report

Certification

250-571- Endpoint Detection and Response 4. x Administration

FAQs

Endpoint security is securing endpoints or entry points of end-user devices such as laptops, desktops, and mobile devices from exploitation by malicious actors and campaigns.

 

Endpoint security examines files, processes, and systems for suspicious or malicious activity. Organizations can install an endpoint protection platform — EPP — on devices to prevent malicious actors from using malware or other tools to infiltrate their systems.

Endpoint security refers to cybersecurity services for network endpoints. These services may include antivirus, email filtering, web filtering, and firewall services.

 

To attend the training session, you should have operational Desktops or Laptops with the required specifications and a good internet connection to access the labs. 

We would always recommend you attend the live session to practice & clarify the doubts instantly and get more value from your investment. However, if you have to skip the class due to some contingency, Radiant Tech learning will help you with the recorded session of that particular day. However, those recorded sessions are not meant only for personal consumption and NOT for distribution or any commercial use.

 

Radiant Tech learning has a data center containing a Virtual Training environment for participant's hand-on-practice. Participants can easily access these labs over Cloud with the help of a remote desktop connection. Radiant virtual labs allow you to learn from anywhere in the world and any time zone. 

The learners will be enthralled as we engage them in real-world and Oriented industry projects during the training program. These projects will improve your skills and knowledge and give you a better experience. These real-time projects will help you a lot in your future tasks and assignments.

 

You can request a return if you do not desire to enroll in the course.

 

Yes you can.

We use the ideal standards in Internet security. Any data retained is not communicated with third parties.

 

It is recommended but not mandatory. Being acquainted with the primary course material will enable students and the trainer to move at the desired pace during classes. You can access courseware for most vendors.

 

You can buy online from the page by clicking "Buy Now." You can view alternate payment methods on the payment options page.

 

Yes, students can pay from the course page.

 

The course completion certification will be awarded to all the professionals who have completed the training program & the project assignment given by your instructor. You can use the certificate in future job interviews to help you to achieve your dream job.

 

Radiant believes in a practical & creative approach to training & development, distinguishing it from other training & developmental platforms. Moreover, training courses are undertaken by experts with a range of experience in their domain.

 

Radiant team of experts will be available at email support@radianttechlearning.com to answer your technical queries even after the training program.

 

Yes, Radiant will provide you with the most updated high, value-relevant real-time projects & case studies in each training program.

 

Technical issues are unpredictable & might occur with us as well. Participants must ensure access to the required configuration with good internet speed.

 

Radiant Techlearning offers training programs on weekdays, weekends & combination of weekdays & weekends. We provide you with complete liberty to choose the schedule that suits your needs.

 

Radiant has highly intensive selection criteria for Technology Trainers & Consultants who deliver training programs. Our trainers & consultants undergo rigorous technical and behavioral interview and assessment processes before they are boarded in the company.

Our Technology experts/trainers & consultants carry deep-dive knowledge in the technical subject & are certified by the OEM.

Our training programs are practically oriented with 70% – 80% hands-on training technology tools. Our training program focuses on one-on-one interaction with each participant, the latest content in the curriculum, real-time projects, and case studies during the training program.

Our faculty will provide you with the knowledge of each course from the fundamental level easily, and you are free to ask your doubts any time your respective faculty.

Our trainers have the patience and ability to simplify difficult concepts with depth and breadth of knowledge.

We provide a support session to ensure quality learning even after the training program.

 

Send a Message.


  • Enroll