Intelligent Orchestration: Automating Security Incident Processing

Intelligent Orchestration: Automating Security Incident Processing

• discover the key concepts covered in this course
• identify security solutions that align with business objectives
• plan how security can be implemented with DevOps
• identify the relevance of security baselines, compliance reports, and regulatory compliance
• recall common security tools and techniques
• recognize the need for proactive security incident planning
• identify security incident response processes that could be automated
• differentiate between automation and orchestration solutions in IT
• describe how SIEM allows for centralized security event monitoring
• recognize the need for automated security incident triage and response
• plan the automation of security triage
• recall how playbooks create a workflow that enables automated security incident responses
• describe how machine learning can be used to identify potential security incidents
• summarize the key concepts covered in this course

Discover the importance of automating the responses to security incidents. Examine how SIEM and SOAR are related, as well as how automation and orchestration differ. The role of playbooks and machine learning in security is also covered.