CMARS: Implementing Monitoring, Analysis and Response System

4 Day Course
Hands On
Official Curriculum
Code CMARS

This course has been retired. Please view currently available Cisco Security Training Courses.

Modules

Hide all

isco Security MARS Overview and STM Task Flow (2 topics)

  • Introducing Cisco Security MARS
  • Understanding STM Task Flow

Cisco Security MARS Configuration (4 topics)

  • Configuring Reporting and Mitigation Devices
  • Adding Cisco Security and Network Devices into the Cisco Security MARS Appliance
  • Adding Security and Network Devices from Other Vendors into the Cisco Security MARS Appliance
  • Working with User Defined Log Parser Templates

Cisco Security MARS Incident Investigation (4 topics)

  • Network Summary
  • Case Management
  • Incident Investigation
  • Sending Notifications

Cisco Security MARS Rules and Management (4 topics)

  • Cisco Security MARS Rules
  • Cisco Security MARS Management
  • System Maintenance
  • Cisco Security MARS Global Controller

Prerequisites

Fundamental knowledge of implementing network security / CCSP or Security CQS and working knowledge of routing and switching / CCNA

Sections