Course: SOAR360i-38

Configuring ArcSight SOAR for Effective Threat Response

Virtual Instructor Led Training

Authorised OpenText Trainer

Difficulty Rating

Course Duration: 5 Days

The participants will obtain certificates signed by OpenText (course completion).

Course Description

This course teaches you how to configure ArcSight SOAR to receive alerts, integrate with other products, and create Playbooks.

Modules

  1. Introduction to ArcSight SOAR

  2. Setting up SOAR to receive events

  3. Understanding SOAR Workflow

  4. SOAR Integrations Workflow

  5. SOAR Users, Groups, & SSO

  6. SOAR Case Management

  7. Filtering, Classifying, Consolidating, & Dispatching Cases

  8. Automating Responses with Workflow Playbooks

  9. SOAR System Status

  10. Monitoring Using SOAR Dashboards & Reports

Intended Audience

This course is designed for Security Content Developers, who may be Analysts or Administrators.

Recommended Skills

This course assumes a familiarity working with ArcSight ESM but it is not required.