Get expert instruction & hands-on practice with Unified Security Management.
- Training Overview Overview
- Schedule Schedule
- Course descriptions Courses
- Self-Paced Training Self-Paced
- certification » certification »
Launchpad for USM Anywhere
GETTING STARTED: COURSE OVERVIEW
This self-paced course gives security engineers, analysts, and project team members an introduction to AlienVault USM Anywhere. Get an overview of product setup, configuration and functionality so that you can start using USM Anywhere immediately!
MODULE 1: INTRODUCTION TO USM ANYWHERE
Please Register to Access the Launchpad for USM Anywhere
Once you register, you will have access to the Launchpad for USM Anywhere training materials!
Introduction & Objectives • 2 MINUTES
This video introduces Module 1 and defines the learning objectives.
Threat Detection & Security Management • 11 MINUTES
This video examines the threats that exist today, the challenges you face keeping your environment secure and how USM Anywhere can assist you through its 5 essential tools (Asset Discovery, Vulnerability Assessment, Intrusion Detection, Behavioral Monitoring, SIEM: Security Information and Event Management).
AlienVault Labs, OTX, & Threat Intelligence • 7 MINUTES
This video introduces AlienVault Labs, our team of security researchers who work to keep up to date on the latest malware and attacker tools on the security landscape and provide AlienVault Threat Intelligence updates to USM Anywhere for targeted detection of the latest threats. We will also discuss the Open Threat Exchange (OTX), the world’s first open threat intelligence community that enables collaborative defense with open access and collaborative research.
Monitoring All Your Environments • 2 MINUTES
This video briefly introduces the USM Anywhere architecture and shows how your cloud based and on-premises environments can be monitored from one central location, giving you a single pane of glass from which to view all your Assets.
Summary & Closing • 1 MINUTES
This video provides links to resources that may be useful if you are new the security operations. We also review what he have learned in Module 1.
MODULE 2: SETTING UP USM ANYWHERE
Introduction & Objectives • 2 MINUTES
This video introduces Module 2 and defines the learning objectives.
Sensor Overview • 2 MINUTES
This video introduces the USM Anywhere Sensor. It describes the sensor's purpose and the shows you the different sensor types available.
Preinstall Checklist • 6 MINUTES
This video provides details to consider before starting the deployment of your first sensor to help everything run smoothly. We review a checklist that looks at networking, account and system requirements.
Common Sensor Functionality • 2 MINUTES
This video identifies the functionality that applies to all sensor types with one exception that we will highlight.
VMware Sensor • 2 MINUTES
This video identifies the specifications and functionality that applies to the VMware ESXi sensor.
Microsoft Hyper-V Sensor • 2 MINUTES
This video identifies the specifications and functionality that applies to the Microsoft HyperV sensor.
Amazon Web Services Sensor • 3 MINUTES
This video identifies the specifications and functionality that applies to the Amazon Web Services sensor.
Microsoft Azure Sensor • 2 MINUTES
This video identifies the specifications and functionality that applies to the Microsoft Azure sensor.
Initial Deployment Workflow • 2 MINUTES
This video walks through overall workflow as it relates to setting up USM Anywhere for the first time from a high level.
First Sensor Deployment • 5 MINUTES
This video demonstrates the initial deployment and configuration of a VMware sensor. It also demonstrates the sensor activation through the Web UI and connection to USM Anywhere.
Sensor Setup Wizard • 4 MINUTES
This video demonstration walks through the VMware Sensor setup wizard highlighting the purpose of each screen.
Connecting Additional Sensors • 4 MINUTES
This video demonstrates the connection of an additional sensor to USM Anywhere. We will see how additional authentication codes are generated on the USM Anywhere web interface.
Summary & Next Steps • 1 MINUTES
This video reviews what he have learned in Module 2.
MODULE 3: A TOUR OF USM ANYWHERE
A Tour of USM Anywhere - Demo • 10 MINUTES
In this video we hear from Garrett Gross, our Director of Field Enablement at AlienVault. He will take you through some of the benefits and additional value USM Anywhere has to offer, focused on how you or your team might leverage USM Anywhere on a day to day basis.
Module 4: AN INTRODUCTION TO SENSOR APPS AND ALIENAPPS™
Sensor Apps and AlienApps • 27 MINUTES
This video introduces you to Sensor Apps and AlienApps™ in USM Anywhere. We define the differences between the 2 app types, showing the actions that can be leveraged and how these actions can be invoked through use cases for each type. Finally, we provide a demonstration of the Sensor Apps and AlienApps™ user interface.
Launchpad for USM Appliance
GETTING STARTED: COURSE OVERVIEW
This self-paced course gives security engineers, analysts, and project team members an orientation to AlienVault USM Appliance. It is designed to accelerate your awareness of the full range of features in the USM platform, making you more effective on day one.
Course Overview • 4 MINUTES
This video provides and overview of the USM Appliance Launchpad course including learning objectives, target audience and requirements.
MODULE 1: USM APPLIANCE OVERVIEW
USM Appliance Overview • 14 MINUTES
This video introduces the Alienvault Unified Security Management and describes in detail the 5 essential tools that it is composed of including Asset Discovery, Vulnerability Assessment, Intrusion Detection, Behavioral Monitoring, SIEM: Security Information and Event Management.
USM Architecture • 11 MINUTES
This video describes the USM Appliance architecture emphasizing the function of the 3 major components, namely the Sensor, Server and Logger, and details how information flows between these components.
OTX & AlienVault Labs • 8 MINUTES
This video introduces AlienVault Labs, our team of security researchers who work to keep up to date on the latest malware and attacker tools on the security landscape and provide AlienVault Threat Intelligence updates to USM Appliance for targeted detection of the latest threats. We will also discuss the Open Threat Exchange (OTX), the world’s first open threat intelligence community that enables collaborative defense with open access and collaborative research.
MODULE 2: VERIFYING OPERATIONS
USM User Interface • 25 MINUTES
This video describes the USM User Interface in detail, going through all the Primary, Secondary and Utility Menus as well as demonstrating some of the functionality live.
Verifying Operations • 19 MINUTES
This video shows how to verify that USM Appliance is configured correctly to receive and process data so you are alerted to threats in your environment. A live demonstration will show how to validate that events, alarms and raw logs are flowing and being displayed correctly.
MODULE 3: ASSET MANAGEMENT
Asset Management • 47 MINUTES
This video introduces Assets as they apply to USM Appliance. We go into great detail on how Assets are presented in the user interface including all the details that apply to Assets and associated functionality. We also introduce the concept of Asset Values and explain there importance.
Adding Assets • 30 MINUTES
This video explains all the methods for adding Assets into USM Appliance. We will review adding Assets manually, importing from a CSV file, importing from SIEM Events and through Asset Discovery Scans.
Organizing Assets • 29 MINUTES
This video explains how Assets can be organized in USM Appliance. This is achieved through the use of Asset Groups, Networks, Network Groups and Asset Labels, we will be describing all these in detail with the aid of a demonstration in the USM Appliance.
MODULE 4: POLICIES
Introduction to Policies • 14 MINUTES
This video explains the flow of Events in the USM Appliance Server as it applies to Policies and Correlation Directives. We will look at the components that make up a Policy Rule and the considerations you should make when creating Policies.
Policies for Events • 65 MINUTES
This video deep dives into Policy creation, going into great detail on each component and provides a demonstration of Policy creation in USM Appliance.
Policies for Directive Events • 11 MINUTES
This video deep dives into Directive creation, going into great detail on each component and provides a demonstration of Directive creation in USM Appliance.
MODULE 5: SECURITY ANALYSIS
Introduction to Security Analysis • 32 MINUTES
This video introduces the USM Appliance security analysis process and takes you through some of the Dashboards USM Appliance has to offer to assist you with your investigations.
Remediating Alarms • 49 MINUTES
This video introduces the Alarm remediation process to help you validate an Alarm, put measures in place to address the issue and planning to implement a solution so such security incidents can be avoided in the future.
Investigating Events • 30 MINUTES
This video demonstrates how to investigate Events in USM Appliance. We discuss how Events can be sorted and filtered as well as describing all the information contained within an Event.
Raw Logs and Ticketing • 19 MINUTES
This video demonstrates how to investigate Raw Logs in USM Appliance. We discuss how Raw Logs can be sorted and filtered as well as describing how Raw Logs can be exported. We will also introduce the ticketing system in USM Appliance.
Reporting • 15 MINUTES
This video introduces Reporting in USM Appliance. We will describe the standard reports that come as part of USM Appliance and also look at how these reports can be customized and formatted to meet your needs.
Tell Us What You Think!
We value your feedback and would love to know your thoughts on our Launchpad for USM We would greatly appreciate you taking a few moments to complete our survey!