SIEM Design & Implementation

This course serves as an important primer to those who are unfamiliar with the architecture of an Elastic-based SIEM. Students that have taken or plan to take additional cyber defense courses may find SEC455 to be a helpful supplement to the advanced concepts they will encounter in courses such as SEC555.

Course syllabus:

  1. Distributed Search and Visualization

  2. Enriching and Managing Logs