Course Offerings

Basic Education

Course Description

Log-Ed's Basic Education is a short (4 hour) web-based session whose objective is to ensure customers have enough product knowledge to start using LogLogic products. This session contains lecture and demonstration elements, concluding with Q&A. It covers configuration fundamentals, and operational basics. For more extensive product knowledge, and hands-on labs, the customer should purchase a full LMIA, LMIE or LMI Analyst-Engineer Combo courses.

Who Should Attend

New or Prospective LogLogic customers who are responsible for the day-to-day enforcement and monitoring of IT controls, IT personnel tasked with the achieving compliance, managing network security and availability. All persons responsible for administration of LogLogic appliances, including, but not limited to:

  • IT compliance managers and engineers
  • IT log management personnel
  • System and IT administrators
  • Partner support engineers
  • Sales engineers
  • Internal Investigators and Security Officers

Course Objectives

  • Perform administrative tasks using the user interfaces
  • Implement basic Open Log Services & of delivery log data from devices to LogLogic appliances — and from these appliances to other systems
  • Discuss centralized management issues
  • Carry out Agile (Custom) Reporting
  • Implement and customize alerts and reports to notify an analyst of important events

Prerequisites

Persons attending this course should have a basic knowledge of internet working concepts and a working understanding of Internet protocols and addressing. Fundamental knowledge of UNIX and Syslog facilities recommended.

Topics Covered in this course

  • LogLogic products and solutions
  • Fundamentals of administration
  • Agile Reporting
  • Searching
  • Log Learning (Alerts)

Certification

None

Sign up for Log-Ed Basic Education »

LMI Analyst

Course Description

Course Description: Log-ED's Log Management and Intelligence Analyst is a two-day, hands-on, instructor-led course which teaches the skills necessary to utilize log data and LogLogic appliances to the maximum potential. LogLogic's products and solutions enable users to utilize vast amounts of log data — from any device or source — to protect information assets, verify and monitor IT controls, automate compliance and mitigate risk.

Who Should Attend

Prospective and existing LogLogic customers who are responsible for the day-to-day enforcement and monitoring of IT controls, IT personnel tasked with the achieving compliance, managing network security and availability. All persons responsible for administration of LogLogic appliances, including, but not limited to:

  • IT compliance managers and engineers
  • IT log management personnel
  • System and IT administrators
  • Reseller support engineers
  • Sales engineers
  • Internal Investigators and Security Officers

Course Objectives

  • Understand log management and intelligence best practices
  • Extrapolate log management best practices from current processes
  • Perform administrative tasks using the user interfaces
  • Implement basic Open Log Services & of delivery log data from devices to LogLogic appliances — and from these appliances to other systems
  • Distinguish user privileges
  • Apply user rights to fit a specific role
  • Design and implement a centralized management solution
  • Carry out Agile (Custom) Reporting
  • Implement and easily customize alerts and reports to notify an analyst of important events
  • Understand why automated and continuous compliance is mission critical
  • Discuss today's regulatory environments and mandates — including SOX, COSO, and COBIT 4.0
  • Explore the features of LogLogic Compliance Suite
  • Validate and monitor IT controls using LogLogic appliances
  • Perform network forensics on a simulated compromised network

Prerequisites

Persons attending this course should have a basic knowledge of internet working concepts and a working understanding of Internet protocols and addressing. Fundamental knowledge of UNIX and Syslog facilities recommended.

Topics Covered in this course

  • Log Management and Intelligence (LMI)
  • Best Practices for LMI
  • Log standards and transport
  • LogLogic products and solutions
  • Fundamentals of administration
  • Centralized management
  • Agile Reporting
  • Searching
  • Log Learning (Alerts)
  • Overview of the Regulations — SOX, COSO, and COBIT 4.0
  • Validating IT controls
  • Risk mitigation

Certification

This course prepares learners for Certified LMI Analyst certification. Participants will become extremely competent in log management and intelligence, and become experts on best practices, reporting and compliance.

Sign up for Log-Ed LMI Analyst »

LMI Combo

Course Description

Log Management and Intelligence Analyst-Engineer Combo, combines elements from our Analyst and Engineer course into one, three day session.

The course begins by teaching best practices for collecting and storing log data, implementation of log standards, and provides an overview on how companies can validate IT controls, mitigate risk, and achieve compliance using logs. Then continues to delve deep into the advanced skills necessary to architect, install, manage and maintain LogLogic appliances.

Who Should Attend

Individuals who are responsible for the initial installation, upgrade and maintenance of LogLogic Solutions. IT personnel tasked with the managing enterprise-wide Log Management and Intelligence solutions. IT personnel tasked with managing network security and availability. All persons responsible for administration of LogLogic appliances, including, but not limited to:

  • IT log management personnel
  • System and IT administrators
  • Reseller support engineers
  • Sales engineers

Course Objectives

  • Understand how LogLogic devices integrate into the corporate infrastructure
  • Demonstrate how to architect LogLogic LMI Solutions using architectural tools
  • Perform initial configuration of LogLogic appliances
  • Demonstrate how to customize the UI
  • Perform advanced configuration tasks such as device creation, management, message and port configuration
  • Understand LogLogic Message Routing
  • Implement Open Log Services & of delivery log data from devices to LogLogic appliances — and from these appliances to other systems
  • Distinguish user privileges Apply user rights to fit a specific role
  • Design and implement a centralized management station
  • Understand and execute backup and restore procedures
  • Understand and configure a highly available (HA) appliance cluster
  • Recite recurring maintenance procedures
  • Perform routine maintenance tasks
  • Understand how Check Point LEA interfaces with LogLogic appliances
  • Configure Check Point log sources on LogLogic appliances
  • Explain how LogLogic Log Collectors operate
  • Configure SNARE agents on PC's to send Windows log events to LogLogic appliances
  • Understand how LASSO retrieves Windows event logs
  • Configure a LASSO server to collect Windows Event Logs to LogLogic appliances
  • Recite the steps required to extract log data from devices that use File Transfer Rules
  • Configure LogLogic appliances to extract log data using File Transfer Rules
  • Configure LogLogic tunnels to transfer log data from one appliance to another
  • Explore the SNMP implementation on LogLogic appliances
  • Implement an SNMP walk through a LogLogic appliance
  • Discuss troubleshooting procedures
  • Use troubleshooting procedures to identify and correct an improperly configured deployment
  • Install and use the Health Check Tool
  • Validate and monitor IT controls using LogLogic appliances
  • Understand how LogLogic devices integrate into the corporate infrastructure
  • Demonstrate how to architect LogLogic LMI Solutions using architectural tools
  • Perform initial configuration of LogLogic appliances
  • Demonstrate how to customize the UI
  • Perform advanced configuration tasks such as device creation, management, message and port configuration
  • Understand LogLogic Message Routing
  • Implement Open Log Services & of delivery log data from devices to LogLogic appliances — and from these appliances to other systems
  • Distinguish user privileges
  • Apply user rights to fit a specific role
  • Design and implement a centralized management station
  • Understand and execute backup and restore procedures
  • Understand and configure a highly available (HA) appliance cluster
  • Recite recurring maintenance procedures
  • Perform routine maintenance tasks
  • Understand how Check Point LEA interfaces with LogLogic appliances
  • Configure Check Point log sources on LogLogic appliances
  • Explain how LogLogic Log Collectors operate
  • Configure SNARE agents on PC's to send Windows log events to LogLogic appliances
  • Understand how LASSO retrieves Windows event logs
  • Configure a LASSO server to collect Windows Event Logs to LogLogic appliances
  • Recite the steps required to extract log data from devices that use File Transfer Rules
  • Configure LogLogic appliances to extract log data using File Transfer Rules
  • Configure LogLogic tunnels to transfer log data from one appliance to another
  • Explore the SNMP implementation on LogLogic appliances
  • Implement an SNMP walk through a LogLogic appliance
  • Discuss troubleshooting procedures
  • Use troubleshooting procedures to identify and correct an improperly configured deployment

Prerequisites

Persons attending this course should have a basic knowledge of internet working concepts and a working understanding of Internet protocols and addressing. Fundamental knowledge of UNIX and Syslog facilities recommended.

Topics Covered in this course

  • Log Management and Intelligence (LMI)
  • Best Practices for LMI
  • Log standards and transport
  • LogLogic products and solutions
  • Fundamentals of administration
  • Centralized management
  • Agile Reporting
  • Searching
  • Log Learning (Alerts)
  • Overview of the Regulations — SOX, COSO, and COBIT 4.0
  • Validating IT controls
  • Risk mitigation
  • Log Management Intelligence Ecosphere
  • Installation and basic configuration
  • UI Customization
  • Message Forwarding/Routing
  • Creating and managing privileged user accounts
  • Working with Management Stations
  • Performing Backup and Restore
  • Fail-over / Highly Available configurations
  • Maintenance tasks
  • Configuring Log Collectors to extract logs from non-Syslog devices
  • Troubleshooting common problems

Certification

This course prepares learners for Certified LMI Analyst and Engineer certification. Participants will become competent in log management and intelligence, and become learned on LogLogic installation, management, and maintenance operations.

Next Training Course

  • October 14-16, 2008 in San Jose, CA
  • January 13-15, 2009 in San Jose, CA

Sign up for Log-Ed LMI Combo »