Using Data

In this course we introduce Use Cases which are a framework designed to take a detection based capability from concept to reality. We then proceed to follow the process for an example Use Case Detection.

7 videos  //  103 minutes of training

Free training week — 1,400+ on-demand courses and hands-on labs

Course syllabus

Use CasesDuration: 17:14

In this video we introduce a new concept that is used to drive new detection capabilities.

Searching for DataDuration: 18:39

In this video we cover using the SIEM to search for data to meet our use case examples.

Building DashboardsDuration: 12:41

In this video we build a dashboard to visualize the data to meet our use case example.

Filtering NoiseDuration: 18:19

In this video we create processing rules to remove unwanted search results to narrow our focus to data meeting our use case requirements.

Creating ReportsDuration: 9:35

In this video we create a dashboard to be used for generating an automated report.

AlarmsDuration: 16:15

In this video we create an alarm to trigger once our criterion is met and provide us with the data we require for investigation.

Questions and Answers (Using Data)Duration: 9:48

A question and answer section built to test your knowledge.

Meet the author

Ryan Fitzpatrick

LinkedIn

Ryan Fitzpatrick has been working in IT for 14 years. He spent the first four years bouncing between help desk, systems administration and network administration for small businesses — where he played around with every piece of technology he could get his hands on — before landing on supporting SIEM. He was intrigued by data analytics and the automation potential SIEM brought to organizations. Armed with natural curiosity, a wide scope of technological understanding and a childhood full of scripting, he found himself in a rewarding career where he could continue to learn, develop and automate. So far he’s helped ingest and analyze data from over 500,000 endpoints worldwide and trained two teams of analysts and engineers to perform security operations.

In his free time, Ryan enjoys video games, practicing jiu-jitsu and teaching himself new skills in IT. His latest interest has been in developing automation servers with Django, and he is successfully managing the health and status of a 60-node SIEM cluster designed to handle data from 60,000 data sources.

Plans & pricing

Infosec Skills Personal

  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

Book a Meeting
  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Award-winning training that you can trust

IDC MarketScape Leader: U.S. IT Training

IDC MarketScape Leader: U.S. IT Training

Infosec Skills

eLearning Content

eLearning Content

Infosec Skills

Best Product - Cybersecurity Training for Infosec Professionals

Best Product - Cybersecurity Training for Infosec Professionals

Infosec Skills

Security Education & Platform

Security Education & Platform

Infosec Skills

Ranked #52 in Top 100 Global Software Sellers

Ranked #52 in Top 100 Global Software Sellers

Infosec