This two-day course covers the foundational topics of the ServiceNow Security Operation suite. The Security Operations Suite includes the Security Incident Response, Vulnerability Response, and Threat Intelligence applications. The Security Operations Suite provides the tools needed to manage the identification of threats and vulnerabilities within your organization as well as specific tools to assist in the management of Security Incidents.
Learning Objectives
A combination of lecture content and lab work helps attendees achieve the following: Discuss the Current State of Security Explain the Security Operations Maturity levels Describe Security Incident Response Components and Configuration Demonstrate the Baseline Security Incident Response Lifecycle Identify Security Incident Response Workflow-Based Responses Configure Vulnerability Assessment and Management Response tools Explore the ServiceNow Threat Intelligence application Employ Threat Sources and Explore Attack Modes and Methods Define Observables, Indicators of Compromise (IOC) and IoC Look Ups Discuss Security Operations Common Functionality Use Security Operations Integrations Demonstrate how to view and analyze Security Operations data
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Work Roles
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.