QRadar SOAR: Integration with QRadar SIEM (BQ430XG-SPVC)

Overview

Gain knowledge on how to integrate QRadar SOAR and SIEM by installing the SOAR Plugin app on SIEM and analyze the SIEM offense in the SOAR QRadar Offense Details tab. Discover how to use playbooks to improve SIEM and SOAR integration. 

Audience

This course is tailored for learners involved in security incident response, offering them a comprehensive understanding of the functionality of the QRadar SIEM and QRadar SOAR integration. The expected learners are Security Operations Center (SOC) Analysts, Security Analysts, Incident Responders, Managed Service Security Providers (MSSP).

Prerequisites

null

Objective

  • Improve response by analyzing QRadar SIEM Offense details
  • Configure QRadar Integration Apps from X-Force Exchange
  • Build a table and run a query
  • Develop playbook
Mostrar detalhes

Course Outline

  • SOAR and SIEM integration
  • Lab
  1. Gain hands-on experience with the SOAR and SIEM console
  2. Configure and use QRadar SOAR Plugin app
  3. Configure and use QRadar Enhanced Data Migration app
  4. Configure and use QRadar Integration app and playbooks
  • Quiz