Cisco StealthWatch Solution Overview Workshop

Session Detail:    Virtual 2 Day

Cisco StealthWatch Solution Overview workshop is designed to provide knowledge to Cisco partners and customers who are responsible for detecting advanced and persistent security threats in order to combat cyberattacks. This workshop provides partner and customer engineers with an overview of Cisco StealthWatch Solution, required and optional components and shows how to analyze security events and alarms, hunt threats and respond to incidents.

About this Course

Cisco StealthWatch Solution Overview workshop is designed to provide knowledge to Cisco partners and customers who are responsible for detecting advanced and persistent security threats in order to combat cyberattacks. This workshop provides partner and customer engineers with an overview of Cisco StealthWatch Solution, required and optional components and shows how to analyze security events and alarms, hunt threats and respond to incidents.

Audience Profile

Cisco customers and partners planning to implement and use Cisco StealthWatch for network data collection and analysis to deliver comprehensive visibility and protection for any type of the network.

At Course Completion

After attending this workshop, students will be be able to:

  • Understand the role of NetFlow in network telemetry
  • Position different components of Cisco StealthWatch solution
  • Understand the threat detection and incident response processes

Prerequisites

It is recommended that the learner have the following skills before attending this course:

  • Cisco Certified Network Associate Routing and Switching (CCNA R&S) certification
  • Cisco Certified Network Professional Security (CCNP Security) certification
  • Operating system administration familiarity (for example, Linux and Windows)

Session Outline

Class Outline

Module 1: Network Telemetry

  • The Need for Network Telemetry
  • NetFlow Fundamentals
  • NetFlow Security Event Logging (NSEL)
  • Cisco StealthWatch Solution Overview

Module 2: Architecture and Components of Cisco StealthWatch

  • StealthWatch Architecture
  • Required Components and Licenses
  • Optional Components and Licenses

Module 3: Design Guidance

  • Sizing the Solution
  • StealthWatch High Availability Design
  • Enterprise Tree and Host Groups

Module 4: Detecting Threats

  • Anomaly Detection Model
  • Security Events
  • Alarm Categories
  • Threat Hunting
  • Incident Response
  • Documentation

Labs

  • Lab 1: The WebUI
  • Lab 2: The Swing Client
  • Lab 3: Inspecting Host Group setup
  • Lab 4: Performing Flow Queries
  • Lab 5: Using Documents
  • Lab 6: Confirming the parameters of a rule/policy
  • Lab 7: Investigating an Alarm
  • Lab 8: Copyright Infringement Event
  • Lab 9: Verify Cisco TrustSec Implementation
  • Lab 10: Malware Investigation
  • Lab 11: Investigating Proxy Connections
  • Lab 12: Insider Threat Detection
  • Lab 13: Building an audit trail

Need to train your team?

All of our sessions can be customized to meet your team’s specific need. Build the perfect program by picking and choosing topics from any of the courses in our catalog. A personalized private session gives you the ultimate flexibility and helps maximize your team’s valuable time!

Requesting Team Training
DateTimeTypePriceAdd To Cart

Cisco StealthWatch Solution Overview Workshop

2 Day
Virtual

$2,880.00

Chat with a Coach

Chat with a Coach

Have a more immediate need? Why spend the next hour searching online for answers when you can spend just 15 minutes with one of our experts and get accurate and personalized answers to all of your questions. 

$9.99 | 15 Minutes

Book Now