• Cisco Training Courses

    Insoft has been serving IT community with official Cisco training offering since 2010. Find all the relevant information on Cisco training on this page.

    View More

    Cisco Certifications

    Experience a blended learning approach that combines the best of instructor-led training and self-paced e-learning to help you prepare for your certification exam.

    View More

    Cisco Learning Credits

    Cisco Learning Credits (CLCs) are prepaid training vouchers redeemed directly with Cisco that make planning for your success easier when purchasing Cisco products and services.

    Have CLCs and want to redeem them?

    Cisco Continuing Education

    The Cisco Continuing Education Program offers all active certification holders flexible options to recertify by completing a variety of eligible training items.

    View More

    Cisco Digital Learning

    Certified employees are VALUED assets. Explore Cisco official Digital Learning Library to educate yourself through recorded sessions.

    Browse CDLL Catalogue

    Cisco Business Enablement

    The Cisco Business Enablement Partner Program focuses on sharpening the business skills of Cisco Channel Partners and customers.

    View More

    Fortinet Technical Certifications

    The Fortinet Network Security Expert (NSE) program is an eight-level training and certification program to teach engineers of their network security for Fortinet FW skills and experience.

    View More

    Fortinet Technical Courses

    Insoft is recognised as Fortinet Authorized Training Center in selected locations across EMEA.

    View More

    Official ATC Status

    Check our ATC Status across selected countries in Europe.

    View More

    Fortinet Services Packages

    Insoft Services has developed a specific solution to streamline and simplify the process of installing or migrating to Fortinet Products.

    Browse Packages

    Prepforce Bootcamp

    The only comprehensive source available today to prepare for Fortinet NSE 8 certification globally.

    View More

    Microsoft Training

    Insoft Services provides Microsoft training in EMEAR. We offer Microsoft technical training and certification courses that are led by world-class instructors.

    View More

    Technical Training

    The evolution of Extreme Networks Technical Training provides a comprehensive progressive pathway from Associate to Professional accreditation.

    View More

    ATP Accreditation

    As an authorised training partner (ATP), Insoft Services ensures that you receive the highest standards of education available.

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

    View More

     

    Our Mission: Provide an expert set of modern & leading edge Network Automation skills to the market through professional services.

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

    View More

     

    We help organisations to deploy Software-Defined Networking (SDN) solutions, such as Cisco DNA. Besides, our team has extensive experience in integrating Cisco DNA Center with third-party systems.

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

    View More

    About Us

    Our training portfolio includes a wide range of IT training from IP providers, including Cisco, Extreme Networks, Fortinet, Microsoft, to name a few, in EMEA.

    View More

    ATD with DXL, TIE and MAR Administration

    X

    Contact Us

    We would love to hear from you. Please complete this form to pre-book or request further information about our delivery options.

    Subscribe

    I'd like to receive emails with the latest updates and promotions from Insoft.

    Data Protection & Privacy

    I hereby allow Insoft Ltd. to contact me on this topic. Further, I authorise Insoft Ltd. processing, using collecting and storing my personal data for the purpose of these activities. All your data will be protected and secured as outlined in our privacy policy.


    ATD with DXL, TIE and MAR Administration

    Enroll Now
    ATD with DXL, TIE and MAR Administration
    Duration
    4 Days
    Delivery
    (Online and onsite)
    Price
    Price Upon Request
    In this course, you will learn the tasks crucial to set up, administer, and manage Advanced Threat Defence (ATD), Data Exchange Layer (DXL), Threat Intelligence Exchange (TIE), and Active Response (MAR) solutions. Our ATD with DXL, TIE and MAR Administration course provides an indepth look at each of the products and how they integrate with each other. In this course, you will learn the tasks crucial to set up, administer, and manage Advanced Threat Defense (ATD), Data Exchange Layer (DXL), Threat Intelligence Exchange (TIE), and Active Response (MAR) solutions. This combined solution enables you to gain better visibility to your environment, protecting and limiting exposure to threats and vulnerabilities. This course combines lectures and practical lab exercises with significant time allocated for hands-on interaction with the ATD, TIE, DXL, and MAR user interfaces, as well as detailed instructions for the integration of this solution.
    • Describe ATD solution purpose, key features, and benefits.
    • Install and configure ATD appliance settings.
    • Create VM and analyzer profiles in ATD to be used for analysis.
    • Submit content to ATD for analysis, interpret the results, generate reports, and manage the whitelist and blacklist.
    • Update security content and software in ATD.
    • Identify resources and tools useful for basic troubleshooting in ATD.
    • Describe the DXL, TIE, and MAR solutions, requirements, and key features.
    • Install and verify TIE, DXL, and MAR components.
    • Configure basic policies for DXL brokers and clients.
    • Configure the DXL broker in ePO.
    • Describe and perform basic troubleshooting tasks for DXL.
    • Identify and configure policies required for a TIE environment.
    • Analyze and manage threat reputation.
    • Explain how to configure the Active Response service from ePO.
    • Explain how to use MAR collectors, searches, reactions, and triggers.
    • Use Threat Workspace to investigate malware.
    • Integrate ATD with selected McAfee solutions and explain how to operationalize the solutions to deliver specific outcomes.

    Day 1

    • Welcome
    • Products Integration
    • Advanced Threat Defense Solution Overview
    • ATD Installation and Set up
    • Configuring ATD Appliance Settings
    • Creating Virtual Machines in ATD

    Day 2

    • Malware Analysis in ATD
    • Configuring ATD Cluster
    • Managing Content and Basic Troubleshooting in ATD
    • Data Exchange Layer Overview
    • Threat Intelligence Exchange Overview
    • Active Response Overview

    Day 3

    • DXL, TIE, and MAR Installation
    • Managing, Configuring, and Troubleshooting DXL
    • Configuring and Using TIE
    • Configuring and Using MAR

    Day 4

    • Using MAR Threat Workspace, Health Status, and Remediation History
    • ATD Integration with ePO, DXL, TIE, and MAR
    • ATD Integration with MWG and NSP
    • ATD Integration with Email Connector and ESM

    This course is intended for system and network administrators, security personnel, auditors, and/or consultants concerned with system endpoint security

    Overview

    In this course, you will learn the tasks crucial to set up, administer, and manage Advanced Threat Defence (ATD), Data Exchange Layer (DXL), Threat Intelligence Exchange (TIE), and Active Response (MAR) solutions. Our ATD with DXL, TIE and MAR Administration course provides an indepth look at each of the products and how they integrate with each other. In this course, you will learn the tasks crucial to set up, administer, and manage Advanced Threat Defense (ATD), Data Exchange Layer (DXL), Threat Intelligence Exchange (TIE), and Active Response (MAR) solutions. This combined solution enables you to gain better visibility to your environment, protecting and limiting exposure to threats and vulnerabilities. This course combines lectures and practical lab exercises with significant time allocated for hands-on interaction with the ATD, TIE, DXL, and MAR user interfaces, as well as detailed instructions for the integration of this solution.

    • Describe ATD solution purpose, key features, and benefits.
    • Install and configure ATD appliance settings.
    • Create VM and analyzer profiles in ATD to be used for analysis.
    • Submit content to ATD for analysis, interpret the results, generate reports, and manage the whitelist and blacklist.
    • Update security content and software in ATD.
    • Identify resources and tools useful for basic troubleshooting in ATD.
    • Describe the DXL, TIE, and MAR solutions, requirements, and key features.
    • Install and verify TIE, DXL, and MAR components.
    • Configure basic policies for DXL brokers and clients.
    • Configure the DXL broker in ePO.
    • Describe and perform basic troubleshooting tasks for DXL.
    • Identify and configure policies required for a TIE environment.
    • Analyze and manage threat reputation.
    • Explain how to configure the Active Response service from ePO.
    • Explain how to use MAR collectors, searches, reactions, and triggers.
    • Use Threat Workspace to investigate malware.
    • Integrate ATD with selected McAfee solutions and explain how to operationalize the solutions to deliver specific outcomes.

    Day 1

    • Welcome
    • Products Integration
    • Advanced Threat Defense Solution Overview
    • ATD Installation and Set up
    • Configuring ATD Appliance Settings
    • Creating Virtual Machines in ATD

    Day 2

    • Malware Analysis in ATD
    • Configuring ATD Cluster
    • Managing Content and Basic Troubleshooting in ATD
    • Data Exchange Layer Overview
    • Threat Intelligence Exchange Overview
    • Active Response Overview

    Day 3

    • DXL, TIE, and MAR Installation
    • Managing, Configuring, and Troubleshooting DXL
    • Configuring and Using TIE
    • Configuring and Using MAR

    Day 4

    • Using MAR Threat Workspace, Health Status, and Remediation History
    • ATD Integration with ePO, DXL, TIE, and MAR
    • ATD Integration with MWG and NSP
    • ATD Integration with Email Connector and ESM

    This course is intended for system and network administrators, security personnel, auditors, and/or consultants concerned with system endpoint security

      Upcoming Dates
    • ` Feb 7 - Feb 10, 2023
    • ` Apr 3 - Apr 6, 2023
    • ` Jun 12 - Jun 15, 2023
    • ` Aug 14 - Aug 17, 2023
    • ` Oct 9 - Oct 12, 2023
    • ` Nov 13 - Nov 16, 2023
    Filter

    Follow Up Courses

    Filter