This course provides an overview for using SAS Talon. The training prepares members of your organization's security operations center to use the solution's ability to analyze threat detection and risk assessments that are powered by more than 100 specialized analytics. The course includes demonstrations, and it teaches you key concepts, terminology, and base functionality that are integral to SAS Talon. After completing the course, you will be able to use the solution to quickly detect incidents of compromise based on behavioral abnormalities of users and devices. You also will be able to manage your resources more effectively with consistent, managed, and governed processes for your security data, investigations, and analytics capabilities.
Learn how to
- Describe the roles and other key components of SAS Talon.
- Examine how risk indicators, events, and behavior patterns provide information about the activity on your network.
- Explain how SAS Talon uses analytics for each device and user to calculate an event score.
- Define how cases enable a security investigator to track and document all activities that are related to investigating a security event.
- Review how SAS Talon informs you of the highest risk devices and users when analyzing threats.
- Examine the security manager and auditor reports that are used to measure the effectiveness and the efficiency of the security team and SAS Talon.
Who should attend
Anyone who will use SAS Talon to assist with the functions within your security operations center. To fully benefit from SAS Talon, you need a general understanding of the potential for cyber threats in your enterprise, knowledge of your network and security practices, and the ability to follow leads using software and hardware.
There are no prerequisites for this course.
This course addresses SAS Fraud Framework software.