Using Data Course

In this course we introduce Use Cases which are a framework designed to take a detection based capability from concept to reality. We then proceed to follow the process for an example Use Case Detection.

1 hour, 43 minutes

Syllabus

Questions and Answers

Video - 00:10:00
A question and answer section built to test your knowledge.
Alarms

Video - 00:16:00
In this video we create an alarm to trigger once our criterion is met and provide us with the data we require for investigation.
Creating Reports

Video - 00:10:00
In this video we create a dashboard to be used for generating an automated report.
Filtering Noise

Video - 00:18:00
In this video we create processing rules to remove unwanted search results to narrow our focus to data meeting our use case requirements.
Building Dashboards

Video - 00:13:00
In this video we build a dashboard to visualize the data to meet our use case example.
Searching for Data

Video - 00:19:00
In this video we cover using the SIEM to search for data to meet our use case examples.
Use Cases

Video - 00:17:00
In this video we introduce a new concept that is used to drive new detection capabilities.

Meet the author

Ryan Fitzpatrick

Ryan Fitzpatrick has been working in IT for 14 years. He spent the first four years bouncing between help desk, systems administration and network administration for small businesses where he played around with every piece of technology he could get his hands on before landing on supporting SIEM. He was intrigued by data analytics and the automation potential SIEM brought to organizations.

Armed with natural curiosity, a wide scope of technological understanding and a childhood full of scripting, he found himself in a rewarding career where he could continue to learn, develop and automate. So far he's helped ingest and analyze data from over 500,000 endpoints worldwide and trained two teams of analysts and engineers to perform security operations.

In his free time, Ryan enjoys video games, practicing jiu-jitsu and teaching himself new skills in IT. His latest interest has been in developing automation servers with Django, and he is successfully managing the health and status of a 60-node SIEM cluster designed to handle data from 60,000 data sources.

Learn More

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments
Start a Free Trial

Associated NICE Work Roles

All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.

  • Cyber Operator
  • Law Enforcement / Counterintelligence Forensics Analyst
  • Cyber Defense Forensics Analyst

Plans & pricing

Infosec Skills Personal

$299 / year

Buy Now 7-Day Free Trial
  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

Book a Meeting
  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Learn about scholarships and financing with

Affirm logo

Award-winning training you can trust