Administering Splunk SOARASOARSPSplunkSP-ASOAR7.0<p>To be successful, students must have a working understanding of these courses: </p> <ul> <li><span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/course/splunk-iiss"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Investigating Incidents with Splunk SOAR <span class="fl-prod-pcode">(IISS)</span></a></span></li></ul><p>SOAR Administrators</p><h4>Topic 1 &ndash;Initial Configuration</h4><ul> <li>Describe SOAR operating concepts</li><li>Identify documentation and community resources</li><li>SOAR &amp; Splunk Architecture</li><li>Product settings</li><li>Access control</li><li>Authentication settings</li><li>Response settings</li><li>Understanding roles</li><li>Creating users</li><li>Managing user access</li><li>Describe SOAR Automation Broker</li></ul><h4>Topic 2 &ndash; Apps, Assets and Playbooks</h4><ul> <li>Add and configure apps and assets</li><li>Manage playbooks</li><li>Ingesting Data</li><li>Labels and tags</li><li>Event settings</li></ul><h4>Topic 3 &ndash; Customization and Monitoring</h4><ul> <li>Create custom severity levels</li><li>Create custom status levels</li><li>Add custom fields and CEF settings</li><li>Create custom workbooks</li><li>Run reports</li><li>Use SOAR audit tools</li><li>Monitor system health</li></ul> <h4>Appendix: SOAR Automation Broker</h4>To be successful, students must have a working understanding of these courses: - Investigating Incidents with Splunk SOAR (IISS)SOAR AdministratorsTopic 1 –Initial Configuration - Describe SOAR operating concepts - Identify documentation and community resources - SOAR & Splunk Architecture - Product settings - Access control - Authentication settings - Response settings - Understanding roles - Creating users - Managing user access - Describe SOAR Automation Broker Topic 2 – Apps, Assets and Playbooks - Add and configure apps and assets - Manage playbooks - Ingesting Data - Labels and tags - Event settings Topic 3 – Customization and Monitoring - Create custom severity levels - Create custom status levels - Add custom fields and CEF settings - Create custom workbooks - Run reports - Use SOAR audit tools - Monitor system health Appendix: SOAR Automation Broker3 Stunden1000.00500.001000.001000.001000.00500.00420.00500.00690.00550.00500.0050.0050.0050.0050.0050.0050.0050.0050.00