How secure is your IT infrastructure? Novell Sentinel 6.1 delivers an integrated view of security and compliance events across the entire enterprise - integrating realtime information from devices, applications, identity and access management systems and physical controls into a single console. This hands-on course explores all functional aspects of the Novell Sentinel 6.1 system in a workshop environment. It also introduces the open architecture of the correlation, collection, incident response, and reporting systems, enabling you to begin integrating Novell Sentinel 6.1 into your existing systems. During the course, you will need to learn how to complete the following tasks: o View and filter incoming events within the Control Center o Analyze and investigate events for asset, vulnerability, and relationship information o Manage the built-in incident response process o Manage and maintain the Sentinel database o Fine-tune and enhance existing Collectors for the local environment and to enrich the incoming event data o Tie together various data sources into a comprehensive information system through the data collection system using local source files and the global mapping service Volledige omschrijving

Bestemd voor

This course covers many aspects of the Novell Sentinel 6.1 product and its functionality. This course is appropriate for analysts who will be using the Sentinel console, administrators who will be managing the day-to-day upkeep, and developers who will be customizing Sentinel correlation rules, reports, or collectors. Certain sections of the material may not be relevant to specific job functions, but the course will give you a complete understanding of Sentinel features, ongoing administration, and introduce customization, network security, and troubleshooting concepts as well.

Benodigde kennis

This course covers a wide range of Novell Sentinel 6.1 functionality, from basic analyst training to custom collector development. There are no formal prerequisites, but to get full value from the class, you are encouraged to be familiar with basic concepts such as: o Basic networking: IP protocol/CIDR notation, HTTP(s)/FTP and other protocols, bandwidth, VLANs, Network Address Translation, DHCP, DNS, LDAP o Network security devices and operation: AV scanners, Intrusion Detection Systems, firewalls, vulnerability scanners, etc o Basic security concepts: Identity/user/role management, access control, security policies, compliance and IT controls, incident response, encryption, reporting o Common network threats: viruses, DOS attacks, information leaks, trojans/worms, buffer overflows, etc. Inschrijven