• Cisco Training Courses

    Insoft has been serving IT community with official Cisco training offering since 2010. Find all the relevant information on Cisco training on this page.

    View More

    Cisco Certifications

    Experience a blended learning approach that combines the best of instructor-led training and self-paced e-learning to help you prepare for your certification exam.

    View More

    Cisco Learning Credits

    Cisco Learning Credits (CLCs) are prepaid training vouchers redeemed directly with Cisco that make planning for your success easier when purchasing Cisco products and services.

    Have CLCs and want to redeem them?

    Cisco Continuing Education

    The Cisco Continuing Education Program offers all active certification holders flexible options to recertify by completing a variety of eligible training items.

    View More

    Cisco U

    Cisco U. is customized to achieve your learning needs as this provides learning paths that includes wide range of topics, including CCNA, Cloud and Network Automation Essentials.

    Browse Catalogue

    Cisco Business Enablement

    The Cisco Business Enablement Partner Program focuses on sharpening the business skills of Cisco Channel Partners and customers.

    View More

    Fortinet Technical Certifications

    The Fortinet Network Security Expert (NSE) program is an eight-level training and certification program to teach engineers of their network security for Fortinet FW skills and experience.

    View More

    Fortinet Technical Courses

    Insoft is recognised as Fortinet Authorized Training Center in selected locations across EMEA.

    View More

    ATC Status

    Check our ATC Status across selected countries in Europe.

    View More

    Fortinet Services Packages

    Insoft Services has developed a specific solution to streamline and simplify the process of installing or migrating to Fortinet Products.

    Browse Packages

    Prepforce Bootcamp

    The only comprehensive source available today to prepare for Fortinet NSE 8 certification globally.

    View More

    Microsoft Training

    Insoft Services provides Microsoft training in EMEAR. We provide Microsoft technical training and certification courses that are led by world-class instructors.

    View More

    Technical Training

    The evolution of Extreme Networks Technical Training provides a comprehensive progressive pathway from Associate to Professional accreditation.

    View More

    ATP Accreditation

    As an authorised training partner (ATP), Insoft Services ensures that you receive the highest standards of education available.

    View More

    What we do

    Through our global presence and partner ecosystem, we provide strategic IT consulting services to align IT services with customers' business goals.

    View More

     

    We are pleased to launch pre-scoped Enterprise Networking Consulting Packages, our ready-made solutions, tailored to ensure efficiency and cost containment.

     

    View More

     

    We specialize in the deployment of vendor-specific automation tools as well as open-source and vendor-independent solutions, that can be tuned in accordance with the business needs of a specific organization.

     

    View More

     

    We provide comprehensive IoT consultancy, deployment and support solutions for businesses that want to launch or improve their use of connected technologies.

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

     

    View More

     

    In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

     

    View More

     

    We provide the highest level of expertise on Cisco consultancy services, that target audits of your current network and implementing updates for improved operational performance, secure data and compliant systems.

    View More

     

    We provide the highest level of expertise on Fortinet consultancy services that target audits of your current network and implementing updates for improved operational performance, secure data and compliant systems.

    View More

     

    Our team can help enterprises, get the most value from Extreme products and services following our predefined value-added packages or custom ones that fits business needs.

     

    View More

     

    TXOne Networks provides cybersecurity solutions that ensure the reliability and safety of ICS and OT environments through the OT zero trust methodology protecting assets for their entire life cycle.

     

    View More

    About Us

    Our training portfolio includes a wide range of IT training from IP providers, including Cisco, Extreme Networks, Fortinet, Microsoft, to name a few, in EMEA.

    View More

    Symantec Endpoint Detection and Response 4.x Planning, Implementation, and Administration R1

    Contact Us

    We would love to hear from you. Please complete this form to pre-book or request further information about our delivery options.

    Data Protection & Privacy

    I hereby allow Insoft Ltd. to contact me on this topic. Further, I authorise Insoft Ltd. processing, using collecting and storing my personal data for the purpose of these activities. All your data will be protected and secured as outlined in our privacy policy.

    Close

    Symantec Endpoint Detection and Response 4.x Planning, Implementation, and Administration R1

    Enroll Now
    Duration
    3 Days
    Delivery
    (Online and onsite)
    Price
    Price Upon Request

    The Symantec Endpoint Detection and Response 4.x Planning, Implementation, and Administration course is designed for the IT security and systems administration professional in a Security Operations role. This course covers how to investigate, remediate, and recover from a security incident using Symantec Endpoint Detection and Response, as well as the prerequisite sizing and
    architecture configurations for implementing Symantec Endpoint Detection and Response On-Prem.

    • Plan and implement a Symantec Endpoint Detection and Response deployment
    • Configure SEDR to perform endpoint detection and response
    • Identify evidence of suspicious and malicious activity
    • Search for indicators of compromise
    • Block, isolate, and remove threats in the environment
    • Collect forensic information

    Module 1: Introduction

    • The Evolving Threat Landscape
    • Challenges of Endpoint Detection and Response in the environment
    • How Symantec Endpoint Detection and Response meets objectives
    • Components of Symantec Endpoint Detection and Response
    • Shared Technologies
    • Symantec Endpoint Detection and Response Add-Ons and Integrations

    Module 2: Architecture and Sizing

    • Architecture and Sizing Overview
    • Architecture
    • Sizing

    Module 3: Implementation

    • System Requirements
    • Installing and Bootstrapping
    • Setup Wizard
    • Management Console Overview
    • Managing Certificates
    • User Accounts and Roles
    • Symantec Endpoint Protection Integration

    Module 4: Detecting Threats

    • Understanding Suspicious & Malicious Activity
    • Prerequisite configuration or considerations
    • Identifying evidence of suspicious/malicious activity with Symantec EDR

    Module 5: Investigating Threats

    • General Stages of an Advanced Attack
    • Understanding Indicators of Compromise
    • Searching for Indicators of Compromise
    • Analyzing Endpoint Activity Recorder Data
    • Additional Investigation Tools

    Module 6: Responding to Threats

    • Cybersecurity Framework
    • Isolating Threats in The Environment
    • Blocking Threats in The Environment
    • Removing Threats in The Environment
    • Tuning the Environment

    Module 7: Reporting on Threats

    • Recovery Overview
    • Notifications and Reporting
    • Collecting forensic data for further investigation of security incidents
    • Using Symantec EDR to create a Post Incident Report

    This course assumes that students are familiar with Symantec Endpoint Detection & Response and Symantec Endpoint Protection.

    Overview

    The Symantec Endpoint Detection and Response 4.x Planning, Implementation, and Administration course is designed for the IT security and systems administration professional in a Security Operations role. This course covers how to investigate, remediate, and recover from a security incident using Symantec Endpoint Detection and Response, as well as the prerequisite sizing and architecture configurations for implementing Symantec Endpoint Detection and Response On-Prem.

    • Plan and implement a Symantec Endpoint Detection and Response deployment
    • Configure SEDR to perform endpoint detection and response
    • Identify evidence of suspicious and malicious activity
    • Search for indicators of compromise
    • Block, isolate, and remove threats in the environment
    • Collect forensic information

    Module 1: Introduction

    • The Evolving Threat Landscape
    • Challenges of Endpoint Detection and Response in the environment
    • How Symantec Endpoint Detection and Response meets objectives
    • Components of Symantec Endpoint Detection and Response
    • Shared Technologies
    • Symantec Endpoint Detection and Response Add-Ons and Integrations

    Module 2: Architecture and Sizing

    • Architecture and Sizing Overview
    • Architecture
    • Sizing

    Module 3: Implementation

    • System Requirements
    • Installing and Bootstrapping
    • Setup Wizard
    • Management Console Overview
    • Managing Certificates
    • User Accounts and Roles
    • Symantec Endpoint Protection Integration

    Module 4: Detecting Threats

    • Understanding Suspicious & Malicious Activity
    • Prerequisite configuration or considerations
    • Identifying evidence of suspicious/malicious activity with Symantec EDR

    Module 5: Investigating Threats

    • General Stages of an Advanced Attack
    • Understanding Indicators of Compromise
    • Searching for Indicators of Compromise
    • Analyzing Endpoint Activity Recorder Data
    • Additional Investigation Tools

    Module 6: Responding to Threats

    • Cybersecurity Framework
    • Isolating Threats in The Environment
    • Blocking Threats in The Environment
    • Removing Threats in The Environment
    • Tuning the Environment

    Module 7: Reporting on Threats

    • Recovery Overview
    • Notifications and Reporting
    • Collecting forensic data for further investigation of security incidents
    • Using Symantec EDR to create a Post Incident Report

    This course assumes that students are familiar with Symantec Endpoint Detection & Response and Symantec Endpoint Protection.

      Upcoming Dates
    • ` Oct 2 - Oct 4, 2023
    • ` Oct 30 - Nov 1, 2023
    • ` Nov 27 - Nov 29, 2023
    • ` Dec 25 - Dec 27, 2023
    • ` Jan 22 - Jan 24, 2024
    • ` Feb 19 - Feb 21, 2024
    Filter

    Follow Up Courses

    Filter

    Category