The Endpoint Detection and Response 4.2 Administration course is designed for the IT security professional in a Security Operations role. This class covers how to detect, investigate, remediate, and recover from an incident using Symantec Endpoint Detection and Response.
This course assumes that students familiar with Endpoint Detection & Response methodology and who are familiar with Symantec Endpoint Protection
2 Days/Lecture & Lab
The Endpoint Detection and Response 4.2 Administration course is intended for students who wish to perform Incident Response activities with Symantec Endpoint Detection and Response
- Identify evidence of suspicious and malicious activity
- Searching for Indicators of Compromise
- Block, Isolate, and Remove threats in the Environment
- Collect Forensic Information