Several hands-on exercises are performed through CYBELS Cyber Range platform, virtualizing information systems and reflecting realistic network architectures.
Each student has a pentester computer and their own IT System at their disposal on CYBELS Cyber Range.
He is able to access numerous equipment (PCs, routers, probes, firewalls, servers, proxies …).
The course also embeds feedback from Thales experience on Cybersecurity tools, devices, projects and solutions

After the course, the students know :

• Deployment of SIEM
• Perform rules
• Functionalities offered by SIEM
• Incident and log correlation

Introduction to SIEM

• How it works
• Situation and organization
• How to choose your SIEM

SIEM Deployment

• Best practices to install and deploy a SIEM
• How to configure a SIEM
• Infrastructure configuration
• Log details

SIEM Configuration

• Perform configuration of SELKS
• Parsing logs
• Logs analysis
• How to build a rule
• Reporting

SIEM Hands on

• Practical exercises
• Logs analysis
• Forensics input