Introducing Cisco Security Monitoring, Analysis, and Response System
Describe a Cisco Security MARS solution and its role in Cisco Threat-Defense System management
Understanding the System Architecture
Describe the software components of Cisco Security MARS architectural design
Configuring a Cisco Security MARS Appliance
Configure the network reporting devices to work with the Cisco Security MARS appliance
Adding Reporting and Mitigation Devices
Describe the key concepts involved in using network reporting and mitigation devices with the Cisco Security MARS appliance
Viewing the Summary Page
Use the Summary page to view the security status of your network
Managing Rules
Describe and configure a rule that detects interesting patterns of network activity and other anomalous network behavior
Understanding Queries and Reports
Describe the process of generating queries and reports in a Cisco Security MARS appliance
Investigating and Mitigating Incidents
Describe the process of incident investigation on a Cisco Security MARS appliance
Working with User-Defined Log Parser Templates
Configure user-defined log parser templates on the Cisco Security MARS appliance
Integrating with Cisco Security Manager
Integrate Cisco Security Manager and Cisco Security MARS
Managing and Administering the System
Perform system maintenance tasks on the Cisco Security MARS appliance
Troubleshooting and Optimizing Cisco Security MARS
Identify common issues about Cisco Security MARS
Using the Cisco Security MARS Global Controller
Describe the features and functions of the Cisco Security MARS Global Controller
Course Review
Summarize the key functionalities of Cisco Security MARS technologies at work