Accelerate Your Multi-Cloud Threat Detection and Response with Cloud SIEM
In this workshop, you will learn how to ingest logs and leverage Cloud SIEM's powerful, out-of-the-box rules to detect threats in Azure and AWS environments.
Abstract
Datadog’s Cloud Security Platform gives you comprehensive, real-time visibility and response guidance across all of your cloud providers in a single, unified platform.
In this workshop, you will learn how to ingest logs and leverage Cloud SIEM’s powerful, out-of-the-box rules to detect threats in Azure and AWS environments. You will also learn best practices for writing custom threat detection rules, and explore how to take action by using our investigation features and Incident Management.
Technical Requirements
In order to complete the course, you will need:
- Google Chrome or Firefox
- Third-party cookies must be enabled to access labs
Course Navigation
At the bottom of each lesson, click MARK LESSON COMPLETE AND CONTINUE button so that you are marked complete for each lesson and can receive the certificate at the end of the course.
Course Enrollment Period
Please note that your enrollment in this course ends after 30 days. You can re-enroll at any time and pick up where you left off.
Workshop Curriculum
-
-
Introduction
-
Known bugs
-
-
-
Video Lesson
-
Lab: Cloud SIEM
-
Feedback
-
-
-
Further Reading
-
Slides
-
Accelerate Your Multi-Cloud Threat Detection and Response with Cloud SIEM
- 1.5-3 hours to complete
- 1 Lesson
- 0.5 hours of video content
- Beginner
