This one-day course teaches you how to use the VMware Carbon Black® Cloud Audit and Remediation™ product to build queries for IT hygiene, incident response, and vulnerability assessment to support your organization’s security posture and policies.
This course provides an in-depth, technical understanding of the product through comprehensive coursework and hands-on scenario-based labs.
Product Alignment
• VMware Carbon Black Cloud Audit and Remediation
• VMware Carbon Black Cloud Endpoint™ Advanced
• VMware Carbon Black Cloud Endpoint™ Enterprise
It is important that you use an email for the registration that you can reach during the course.
• You will receive 4 rolling licenses - 2 for a PC/MAC, and 2 for mobile devices.
• You will receive the e-book in advance of the course; this will allow you to read the materials before the course starts.
Audience:
System administrators and security operations personnel, including analysts and managers
Prerequisites:
This course requires completion of the following course:
• VMware Carbon Black Cloud Fundamentals
Course objectives:
By the end of the course, you should be able to meet the following objectives:
• Describe the components and capabilities of VMware Carbon Black Cloud Audit and Remediation
• Identify the architecture and data flows for Carbon Black Cloud Audit and Remediation communication
• Describe the use case and functionality of recommended queries
• Achieve a basic knowledge of SQL
• Describe the elements of a SQL query
• Evaluate the filtering options for queries
• Perform basic SQL queries on endpoints
• Describe the different response capabilities available from VMware Carbon Black Cloud