With this training, you can able to know the insights about the concepts like RSA NetWitness Logs, RSA NetWitness Logs Data flow, RSA NetWitness Logs architecture, Data sources, Log Deployment scenarios, Customizing the interface, RSA NetWitness Logs user interface, Administration Module Overview, Configuring Live, Configuring Event Stream Analysis (ESA), Configuring Incident Management, Configuration files,

Configuring services and Configuring the Reporting Engine.

Gologica provides the best industry-oriented training for RSA Netwitness to acquire skills in building your professional career. RSA Netwitness course at Gologica covers all the topics and concepts to attain real-time proficiency in RSA Netwitness packets and logs, creating decoder filters, communicating with SIEM products, and so on. This comprehensive training helps you attain good expertise in accomplishing your daily tasks easily. Our trainers and experts deliver the course training in the most practical way.

RSA NETWITNESS FUNDAMENTALS

Introduction to RSA NetWitnessLogs
RSA NetWitness Logsarchitecture
RSA NetWitness Logs Dataflow
Log Deploymentscenarios
Data sources
RSA NetWitness Logs userinterface
Customizing theinterface

CONFIGURING RSA NETWITNESS LOGS

Administration ModuleOverview
Configuring services,live, files, event stream analysis, incident management,etc.
Configuring the ReportingEngine
Configuring the Archiver, the Context Hub, and dataprivacy
Explain the licensingmodel

SETTING UP DATA COLLECTION

Setting up event source monitoring and capturing for the logdata.
Troubleshooting event source collection and setting up collectionfor
Syslog,FileReader,VMware,SDEE,SNMP,Windows,ODBC,CheckPoint, andNetFlow
Validating datacapture
Configuring logcollection

METADATA AND BASICS OF INVESTIGATION

Metadata, key difference between packets, logs, data andmetadata.
Customizing the investigationscreens
Viewing reconstructedevents
How to Write queries simple andcomplex
Describing the purpose of meta keyindexing
Customizing data and metadatadisplays
Creating data visualizations of RSA NetWitness Logs and PacketsTraining
Creating metagroups
Custom column groupsCreation
Using complex queries, drills and views to performinvestigations.

CREATING COMPLIANCE REPORTS

Reporting datasources
Reportingcomponents
Role Based AccessControl
CreatingCharts
Creating compliancereports
Deploying compliance reports fromLive

FILTERING THE DATA SETS

In this module, we are going to learn about how to filter the datasetseasily.
Filtering data withrules
Metadata Taxonomyconcept
sparsers populate meta keysDescription
Using alerts and metadata to investigate potentialthreats
Using Application rules to create newmeta
Using Correlation rules to create newmeta
Deploying content from RSA Live to create newmeta
Determining the cause of anincident

CREATING LOG PARSERS

The metaframework
Introduction toparsers
Creating a log parser usingESI
Deploy a logparser
Debugging logparsers