This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
NetWitness Education Courses
100% helpful (1/1)

NetWitness Platform Foundations 11.6 ILT

ElynnKoh
Contributor Contributor
Contributor

on ‎2021-10-25 06:10 AM - edited on ‎2022-07-07 08:17 AM by Frequent Contributor Frequent Contributor

Netwitness-Education-2C (2).png

 

Access Training
for Customers/Partners

Access Training
for NetWitness Employees

 

 

 

 

$3,000 USD

 

 

3,000 Training Credits

 

 

 

This is an Instructor Led Training class, for On-Demand/Self-Paced please click here

 

Summary

This course covers basic NetWitness Platform functionality, introducing the student to foundational aspects of the solution. 
This is an update to version 11.6. 

 

Overview

This course covers NetWitness Platform architecture, data flow, core and enhanced components, metadata concepts, rules, investigation techniques including queries, filtering and pivoting, along with reporting, alerting and incident management.  Overviews of Endpoint Insights, Advanced Endpoint, UEBA and NetWitness Orchestrator are also provided. Students will gain insights into using the major features of the platform through a combination of lecture and demonstration, as well as practical hands-on exercises that reinforce the concepts.  

 

Audience

Anyone interested and new to NetWitness Platform.

 

Duration: 3 days

 

Prerequisite Knowledge/Skills

Introduction to NetWitness Platform on demand learning 
Students should be familiar with basic computer architecture, networking fundamentals and general information security concepts. Basic knowledge of the TCP/IP protocol stack is beneficial.

 

Course Objectives

Upon completion of this training, the student should be able to: 

  • Describe the NetWitness® Platform architecture, core components and functions 
  • Navigate and customize the user interface 
  • Describe how metadata is created and stored 
  • Differentiate between meta keys, meta values, sessions and events  
  • Use event views to perform simple analysis 
  • Investigate data using queries, pivots and drill points 
  • Describe data filtering techniques 
  • Create new meta values using rules and feeds 
  • Deploy LIVE content 
  • Describe Reporting Engine basics 
  • Describe data correlation and ESA 
  • Generate ESA and Reporting alerts 
  • Create and manage incidents 
  • Describe Endpoint Insights and analyze Endpoint meta. 
  • Describe the roles of NetWitness UEBA and NetWitness Orchestrator 6.0 

 

Course Outline

Module 1: NetWitness Platform Overview 
Module 2: Investigation Basics
Module 3: Refining the Dataset 
Module 4: Reporting Engine Basics 
Module 5: Event Stream Analysis (ESA) 
Module 6: Incident Management and Respond
Module 7: NetWitness Endpoint Insights Agent
Module 8: NetWitness UEBA Concepts
Module 9: NetWitness Orchestrator 

 
 
If you have any questions, please contact your account manager or Contact Us directly!
Was this article helpful? Yes No
Version history
Last update:
‎2022-07-07 08:17 AM
Updated by:
Frequent Contributor Frequent Contributor
© 2022 RSA Security LLC or its affiliates. All rights reserved.