Symantec Data Loss Prevention 14.0: Administration

Date: 09-07-2018 s/d 13-07-2018   |   Category: Symantec : Information Risk and Compliance   |   Instructor: M. Andry Hartawan
Price : IDR.14,500,000

COURSE DESCRIPTION
The Symantec Data Loss Prevention 14.0: Administration course is designed to provide you w ith the fundamental know ledge to configure and administer the Symantec Data Loss Prevention Enforce platform.
The hands-on labs include exercises for configuring Enforce server, detection servers, and DLP Agents as w ell as reporting, workflow , incident response management, policy management and detection, response management, user and role administration, directory integration, and filtering.

Additionally, you are introduced to deployment best practices and the follow ing Symantec Data Loss Prevention products: Netw ork Monitor, Mobile Email Monitor, Mobile Prevent, Netw ork Prevent, Netw ork Discover, Netw ork Protect, Endpoint Prevent, and Endpoint Discover.

Note that this course is delivered on a Microsoft Window s platform.

Delivery Method Instructor-led
Duration Five days

Course Objectives
By the end of this course, you w ill be able to configure and use Symantec Data Loss Prevention 14.0.

Who Should Attend
This course is intended for anyone responsible for configuring, maintaining, and troubleshooting Symantec Data Loss Prevention.

Additionally, this course is intended for technical users responsible for creating and maintaining Symantec Data Loss Prevention policies and the incident response structure.

Prerequisites
You must have a w orking know ledge of Window s serverclass operating systems and commands, as w ell as netw orking and netw ork security concepts.

Hands-On
This course includes practical exercises that enable you to test your new skills and begin to transfer them into your w orking environment.

COURSE OUTLINE
Introduction to Symantec Data Loss Prevention
 Symantec Data Loss Prevention overview
 Symantec Data Loss Prevention architecture

Navigation and Reporting
 Navigating the user interface
 Reporting and analysis
 Report navigation, preferences, and features
 Report filters
 Report commands
 Incident snapshot
 Incident Data Access
 Hands-on labs: Become familiar w ith navigation and tools in the user interface. Create, filter, summarize, customize, and distribute reports.
    Create users, roles, and attributes Incident Remediation and Workflow
 Incident remediation and w orkflow  
 Managing users and attributes
 Custom attribute lookup
 User Risk Summary
 Hands-on labs: Remediate incidents and configure a user’s reporting preferences

Policy Management
 Policy overview
 Creating policy groups
 Using policy templates
 Building policies
 Policy development best practices
 Hands-on labs: Use policy templates and policy builder to configure and apply new policies

Response Rule Management
 Response rule overview
 Configuring Automated Response rules
 Configuring Smart Response rules
 Response rule best practices
 Hands-On Labs: Create and use Automated and Smart Response rules

Described Content Matching
 DCM detection methods
 Hands-on labs: Create policies that include DCM and then use those policies to capture incidents

Exact Data Matching and Directory Group Matching
 Exact data matching (EDM)
 Advanced EDM
 Directory group matching (DGM)
 Hands-on labs: Create policies that include EDM and DGM, and then use those policies to capture incidents

Indexed Document Matching
 Indexed document matching (IDM)
 Hands-on labs: Create policies that include IDM rules and then use those policies to capture incidents

Vector Machine Learning
 Vector Machine Learning (VML)
 Hands-on labs: Create a VML profile, import document sets, and create a VML policy

Network Monitor
 Review of Netw ork Monitor
 Protocols  Traffic filtering
 Netw ork Monitor best practices
 Hands-On Labs: Apply IP and L7 filters

Network Prevent
 Netw ork Prevent overview
 Introduction to Netw ork Prevent (Email)
 Introduction to Netw ork Prevent (Web)
 Hands-On Labs: Configure Netw ork Prevent (E-mail) response rules, incorporate them into policies, and use the policies to capture incidents

Mobile Email Monitor and Mobile Prevent
 Introduction to Mobile Email Monitor
 Mobile Prevent overview
 Configuration
 VPN configuration  Policy and Response Rule Creation
 Reporting and Remediation
 Troubleshooting Network Discover and Network Protect
 Netw ork Discover and Netw ork Protect overview
 Configuring Discover targets
 Configuring Box cloud targets
 Protecting data
 Auto-discovery of servers and shares
 Running and managing scans  Reports and remediation
 Netw ork Discover and Netw ork Protect best practices
 Hands-on labs: Create and run a file system target using various response rules, including quarantining

Endpoint Prevent
 Endpoint Prevent overview
 Detection capabilities at the Endpoint
 Configuring Endpoint Prevent
 Creating Endpoint response rules
 View ing Endpoint Prevent incidents
 Endpoint Prevent best practices
 Managing DLP Agents
 Hands-on labs: Create Agent Groups and Endpoint response rules, monitor and block Endpoint actions, view Endpoint incidents, and use the
    Enforce console to manage DLP Agents

Endpoint Discover
 Endpoint Discover overview
 Creating and running Endpoint Discover targets
 Using Endpoint Discover reports and reporting features
 Hands-on labs: Create Endpoint Discover targets, run Endpoint Discover targets, and view Endpoint Discover incidents

Enterprise Enablement
 Preparing for risk reduction
 Risk reduction
 DLP Maturity model System Administration
 Server administration  Language suppor
t  Incident Deleter
 Credential management
 Troubleshooting
 Diagnostic tools
 Troubleshooting scenario
 Getting support
 Hands-on labs: Interpret event reports and traffic reports, configure alerts, and use the Log Collection and Configuration tool

Sosial Media

Keep up to date with ours:

Get great deals!

Submit your email, to always get the latest information.