Introduction to Cloud SIEM
In this course, you learn the fundamentals about how to use Cloud SIEM in Datadog to detect different types of security threats and attacks.
Learning Objectives
Upon completing this course, you will be able to:
- Effectively collect, process, and manage logs for security monitoring
- Create Detection Rules for different security use cases
- Use Cloud SIEM in Datadog to identify and investigate security vulnerabilities
Primary Audience
This course is designed to provide DevOps Engineers with a general foundation for using Datadog Cloud SIEM.
Prerequisites
The prerequisites for this course are the following:
- Completion of the Learning Environment course
- Familiarity with Logs Management in Datadog is required
- The Datadog 101: Developer or Datadog 101:SRE course is recommended.
- The Introduction to Log Management and and Going Deeper with Logs: Processing courses are also recommended.
Technical Requirements
In order to complete the course, you will need:
- Google Chrome or Firefox
- Third-party cookies must be enabled to access labs
Course Navigation
At the bottom of each lesson, click MARK LESSON COMPLETE AND CONTINUE button so that you are marked complete for each lesson and can receive the certificate at the end of the course.
Course Enrollment Period
Please note that your enrollment in this course ends after 30 days. You can re-enroll at any time and pick up where you left off.
Course Curriculum
-
-
Introduction
-
-
-
Importance of Logs for Cloud SIEM
-
Cloud SIEM in Datadog
-
Lab: Getting Started with Cloud SIEM
-
-
-
Configuring Logs for Cloud SIEM
-
Investigating Various Use Cases with Cloud SIEM
-
Lab: Additional Detection Types
-
Path of the attacker
-
Lab: Path of the attacker
-
-
-
Summary
-
Feedback Survey
-
Introduction to Cloud SIEM
- 2 hours to complete
- 8 Lessons
- Intermediate
