The purpose of security analytics is to detect attacks as fast as possible, enable IT professionals to block or stop an attack and provide detailed information to reconstruct an attack. They do this by collecting, correlating and analyzing a wide range of data. By using Security analytics tools organizations implement real-time monitoring of servers, endpoints and network traffic, consolidate and coordinate diverse event data from application and network logs, and perform forensic analysis to better understand attack methods and system vulnerabilities.
- Analyzing Security and Associated Risks.
- Performing Penetration Testing.
- Analyzing the vulnerabilities in systems, networks and devices.
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.