• Classroom
  • Online, Instructor-Led
Course Description

This two-day course covers the foundational topics of the ServiceNow Security Operation suite. The Security Operations Suite includes the Security Incident Response, Vulnerability Response, and Threat Intelligence applications. The Security Operations Suite provides the tools needed to manage the identification of threats and vulnerabilities within your organization as well as specific tools to assist in the management of Security Incidents.

Learning Objectives

A combination of lecture content and lab work helps attendees achieve the following: Discuss the Current State of Security Explain the Security Operations Maturity levels Describe Security Incident Response Components and Configuration Demonstrate the Baseline Security Incident Response Lifecycle Identify Security Incident Response Workflow-Based Responses Configure Vulnerability Assessment and Management Response tools Explore the ServiceNow Threat Intelligence application Employ Threat Sources and Explore Attack Modes and Methods Define Observables, Indicators of Compromise (IOC) and IoC Look Ups Discuss Security Operations Common Functionality Use Security Operations Integrations Demonstrate how to view and analyze Security Operations data

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Cyber Defense Analysis
  • Cyber Defense Infrastructure Support
  • Cyber Investigation
  • Digital Forensics
  • Exploitation Analysis
  • Network Services
  • Risk Management
  • Software Development
  • Test and Evaluation
  • Threat Analysis
  • Training, Education, and Awareness
  • Vulnerability Assessment and Management