What you’ll learn
By the end of the course, you should be able to meet the following objectives:
Describe the components and capabilities of VMware Carbon Black Cloud Enterprise EDR
Identify the architecture and data flows for VMware Carbon Black Cloud Enterprise EDR communication
Perform searches across endpoint data to discover suspicious behavior
Manage watchlists to augment the functionality of VMware Carbon Black Cloud Enterprise EDR
Create custom watchlists to detect suspicious activity in your environment
Describe the process for responding to alerts in VMware Carbon Black Cloud Enterprise EDR
Discover malicious activity within VMware Carbon Black Cloud Enterprise EDR
Describe the different response capabilities available from VMware Carbon Black Cloud
VMware at DDLS
VMware is the world leader in server virtualisation technologies. DDLS is a VMware Authorised Training Reseller offering training in VMware and vSphere.
Stay ahead of the technology curve
Don’t let your tech outpace the skills of your people
Quality instructors and content
Expert instructors with real world experience and the latest vendor- approved in-depth course content.
Chosen and awarded by the world’s leading vendors as preferred training partner.
Ahead of the technology curve
No matter your chosen technologies or platforms, we can help you stay one step ahead.
Who is the course for?
Security operations personnel, including analysts and managers.
1. Course Introduction
2. Data Flows and Communication
3. Searching Data
4. Managing Watchlists
5. Alert Processing
Analysing alert data
6. Threat Hunting in Enterprise EDR
Cognitive Attack Loop
7. Response Capabilities
Using live response
This course requires completion of the following course:
Terms & Conditions