Security Information and Event Management

Understand how SIEM works and get comfortable creating simple and advanced search queries to look for specific answers from the ingested logs.

This module explores SIEM basics - how logs are ingested and searched over to get the answers and how to identify the anomalies. This module also covers features standard in each SIEM solution, such as timeline, search bar, time filter and how to construct search queries to find anomalous traces. Aspiring security analysts can quickly transfer the knowledge covered in this module into any SIEM solution.

Security Information and Event Management

Need to know

Next Steps

What are modules?