Trending Courses

Principals

Skip Navigation Links

Overview

This one-day course teaches you how to use the VMware Carbon Black® EDR™ product during incident response. Using the SANS PICERL framework, you will configure the server and perform an investigation on a possible incident. This course provides guidance on using Carbon Black EDR capabilities throughout an incident with an in-depth, hands-on, scenario-based lab.
img-course-overview.jpg

What You'll Learn

By the end of the course, you should be able to meet the following objectives:
  • Utilize Carbon Black EDR throughout an incident 
  • Implement a baseline configuration for Carbon Black EDR 
  • Determine if an alert is a true or false positive 
  • Fully scope out an attack from moment of compromise 
  • Describe Carbon Black EDR capabilities available to respond to an incident 
  • Create addition detection controls to increase security

Who Should Attend

Security operations personnel, including analysts and incident responders
img-who-should-learn.png

Prerequisites

This course requires completion of the following course:
  • VMware Carbon Black EDR Administrator

Learning Journey

Coming Soon...

Course Introduction
  • Introductions and course logistics 
  • Course objectives

VMware Carbon Black EDR & Incident Response
  • Framework identification and process

Preparation
  • Implement the Carbon Black EDR instance according to organizational requirements

Identification
  • Use initial detection mechanisms 
  • Process alerts 
  • Proactive threat hunting 
  • Incident determination

Containment
  • Incident scoping
  • Artifact collection 
  • Investigation

Eradication
  • Hash banning 
  • Removing artifacts 
  • Continuous monitoring

Recovery
  • Rebuilding endpoints
  • Getting to a more secure state

Lessons Learned
  • Tuning Carbon Black EDR 
  • Incident close out

Instructors

Scott Duffy

Bestselling Azure & TOGAF® Trainer, Microsoft Azure MVP

4.8 (4.1k)
|
10 Courses
profile-instructor-a.png
Scott Duffy

Bestselling Azure & TOGAF® Trainer, Microsoft Azure MVP

4.8 (4.1k)
|
10 Courses
profile-instructor-a.png

Frequently Asked Questions (FAQs)

  • Why get VMware certified?

    VMware certifications validate your skills and expertise in virtualization and cloud technologies, making you a valuable asset in the IT industry.

    These certifications demonstrate your ability to design, deploy, and manage complex VMware environments, enhancing your career prospects and earning potential.

    VMware-certified professionals are highly sought after by employers worldwide, as they possess the knowledge and skills to drive digital transformation and optimize IT infrastructure.

  • What to expect for the examination?

    VMware offers a variety of certification exams at different levels (VCTA, VCP, VCAP, VCDX) and across various technology tracks (Data Center Virtualization, Network Virtualization, Cloud Management and Automation, etc.).

    Exams typically consist of multiple-choice and scenario-based questions that assess your knowledge and ability to apply it in real-world situations.

    Note: Certification requirements and policies may be updated by VMware from time to time. We apologize for any discrepancies; do get in touch with us if you have any questions.

  • How long is VMware certification valid for?

    As of April 2019, VMware has removed the mandatory recertification requirement for VCP certifications.

    This means your VCP certification will not expire, and you are not required to recertify at any specific interval.

    However, VMware encourages individuals to recertify and upgrade their certifications to validate their continued expertise and stay current with the latest technologies.

    Note: Certification requirements and policies may be updated by VMware from time to time. We apologize for any discrepancies; do get in touch with us if you have any questions.

  • Why take this course with Trainocate?

    Here’s what sets us apart:

    - Global Reach, Localized Accessibility: Benefit from our geographically diverse training hubs in 16 countries (and counting!).

    - Top-Rated Instructors: Our team of subject matter experts (with high average CSAT and MTM scores) are passionate to help you accelerate your digital transformation.

    - Customized Training Solutions: Choose from on-site, virtual classrooms, or self-paced learning to fit your organization and individual needs.

    - Experiential Learning: Dive into interactive training with our curated lesson plans. Participate in hands-on labs, solve real-world challenges, and take on comprehensive assessments.

    - Learn From The Best: With 30+ authorized training partnerships and countless awards from Microsoft, AWS, Google – you're guaranteed learning from the industry's elite.

    - Your Bridge To Success: We provide up-to-date course materials, helpful exam guides, and dedicated support to validate your expertise and elevate your career.

Keep Exploring

Course Curriculum

Training Schedule

Exam & Certification

Frequently Asked Questions

img-improve-career.jpg

Improve yourself and your career by taking this course.

More Courses By VMware

Browse All Courses
vmnsxms-vmware-nsx-micro-segmentation-v6
NSX

VMware NSX: Micro-Segmentation v6.3

VMNSXMS - VMware NSX: Micro-Segmentation v6.3
ILT VILT
Course Duration 2 Days
vmnsxicm-vmware-nsx-install,-configure,-manage-v6
NSX

VMware NSX: Install, Configure, Manage v6.4

Learn how to use logical switching in VMware NSX to virtualize your switching environment.
ILT VILT
Course Duration 5 Days
vsft67-vmware-vsphere-fast-track-[v6
vSphere

VMware vSphere: Fast Track [V6.7]

Building on the installation and configuration content from our best-selling course
ILT VILT
Course Duration 5 Days
img-get-info.jpg

Ready to Take Your Business from Great to Awesome?

Level-up by partnering with Trainocate. Get in touch today.

Name
Email
Phone
I'm inquiring for
Inquiry Details

By providing your contact details, you agree to our Privacy Policy.

Stay Connected. Be the first to Know.

Company

Principals

Services

Customer Service

© Copyright Trainocate 2024. All rights reserved.