Got a question? Call 1800 853 276   |   
Cloud Computing and Virtualisation

VMware Carbon Black Cloud Enterprise EDR

  • Length 1 day
  • Price $1265 inc GST
Course overview
View dates &
book now
  • Register interest

Why study this course

This course teaches you how to use the VMware Carbon Black® Cloud Enterprise EDR™ product and leverage its capabilities to configure and maintain the system according to your organisation’s security posture and policies. The course provides an in-depth, technical understanding of the product through comprehensive coursework and hands-on scenario-based labs.

Product Alignment
• VMware Carbon Black® EDR™
• VMware Carbon Black Cloud Endpoint™ Enterprise

Request Course Information

By submitting an enquiry, you agree to our privacy policy and receiving email and other forms of communication from us. You can opt-out at any time.


What you’ll learn

By the end of the course, you should be able to meet the following objectives:

  • Describe the components and capabilities of VMware Carbon Black Cloud Enterprise EDR

  • Identify the architecture and data flows for VMware Carbon Black Cloud Enterprise EDR communication

  • Perform searches across endpoint data to discover suspicious behavior

  • Manage watchlists to augment the functionality of VMware Carbon Black Cloud Enterprise EDR

  • Create custom watchlists to detect suspicious activity in your environment

  • Describe the process for responding to alerts in VMware Carbon Black Cloud Enterprise EDR

  • Discover malicious activity within VMware Carbon Black Cloud Enterprise EDR

  • Describe the different response capabilities available from VMware Carbon Black Cloud


VMware at DDLS

VMware is the world leader in server virtualisation technologies. DDLS is a VMware Authorised Training Reseller offering training in VMware and vSphere.


Stay ahead of the technology curve

Don’t let your tech outpace the skills of your people

Quality instructors and content

Expert instructors with real world experience and the latest vendor- approved in-depth course content.

Partner-Preferred Supplier

Chosen and awarded by the world’s leading vendors as preferred training partner.

Ahead of the technology curve

No matter your chosen technologies or platforms, we can help you stay one step ahead.

Who is the course for?

Security operations personnel, including analysts and managers.


Course subjects

1. Course Introduction

  • Introductions and course logistics

  • Course objectives

2. Data Flows and Communication

  • Hardware and software requirements

  • Architecture

  • Data flows

3. Searching Data

  • Creating searches

  • Search operators

  • Analysing processes

  • Analysing binaries

  • Advanced queries

4. Managing Watchlists

  • Subscribing

  • Alerting

  • Custom watchlists

5. Alert Processing

  • Alert creation

  • Analysing alert data

  • Alert actions

6. Threat Hunting in Enterprise EDR

  • Cognitive Attack Loop

  • Malicious behaviors

7. Response Capabilities

  • Using quarantine

  • Using live response


Prerequisites

This course requires completion of the following course:

  • VMware Carbon Black Cloud Fundamentals


Terms & Conditions

The supply of this course by DDLS is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.



Request Course Information

By submitting an enquiry, you agree to our privacy policy and receiving email and other forms of communication from us. You can opt-out at any time.