Sophos Professional Services (Central) XDR Training - Single Organization - 1 day

Description:

This is a 1-day course for customers looking to enhance their threat hunting skills within Sophos Central. This session will provide the end-user a hands-on experience looking for indicators of compromise within a lab environment. This course covers advanced concepts using Live Discover from the Threat Analysis Center. Attendees should be
\familiar with the Sophos Central Dashboard prior to enrolling in this course.
Features:

The primary topics will include:

•  Review of modern cyber attacks
•  Think and act like a Security Operations Center
•  Best practice configuration of Threat Policies, Peripheral Control, and Application Control
•  SQL query construction
• Searching for Indicators of Compromise (IOC)
• Tracing the source of process, network, and file activity
•  Querying devices for vulnerabilities / missing patches
•  Threat Graph analysis and remediation
•  Using Investigations to identify potential IOCs
•  Interacting with the Sophos XDR Community
•  Leveraging the Central API for XDR interaction

Datasheet