IBM Security QRadar SIEM Administration [BQ150G]

Indhold

• Install and manage automatic updates to QRadar SIEM assets
• Configure QRadar backup and restore policies
• Leverage QRadar administration tools to aggregate, review, and interpret metrics
• Use network hierarchy objects to manage QRadar SIEM objects and groups
• Manage QRadar hosts and licenses and deploy assets
• Monitor the health of assets in a QRadar deployment
• Configure system settings and asset profiles
• Configure reasons that QRadar administrators use to close offenses
• Create and manage reference sets
• Create the credentials used to perform authenticated scans
• Manage, route, and store event and flow data
• Use domains in QRadar SIEM to act as a filter for events, flows, scanners, assets, rules, offenses, and retention policies
• Configure user accounts including user profiles, authentication, and authorizations
• Manage custom properties for assets, events, and flows
• Manage QRadar log sources
• Manage QRadar flow sources
• Integrate Vulnerability Assessment Scanner results in QRadar SIEM
• Manage groups that monitor Internet networks and services