Description
This course is designed to provide learners with an in-depth understanding of CrowdStrike/EDR, a powerful endpoint security tool. Participants will learn how to install and configure CrowdStrike/EDR, manage hosts, create and manage prevention policies, customize IOAs, manage exclusions and quarantines, and troubleshoot issues. Additionally, this course includes an exam preparation module that will equip learners with the knowledge and skills needed to pass the certification exam. Module 1: What is CrowdStrike/EDRIntroduction to CrowdStrike/EDRUnderstanding Endpoint Detection and Response (EDR)Key features and benefits of CrowdStrike/EDRModule 2: Users and RolesUser and role management in CrowdStrike/EDRUnderstanding permissions and access levelsBest practices for user and role managementModule 3: InstallationCrowdStrike/EDR installation prerequisitesInstalling CrowdStrike/EDR on endpointsPost-installation configurations and best practicesModule 4: TroubleshootingTroubleshooting common issues with CrowdStrike/EDRBest practices for effective troubleshootingModule 5: Uninstalling & Sensor updatesUninstalling CrowdStrike/EDR from endpointsUpdating CrowdStrike/EDR sensorsBest practices for sensor managementModule 6: Host managementManaging hosts using CrowdStrike/EDRUnderstanding host groups and policiesBest practices for host managementModule 7: Prevention policiesCreating and managing prevention policies in CrowdStrike/EDRUnderstanding policy rules and configurationsBest practices for policy managementModule 8: Custom IOAsCreating custom Indicators of Attack (IOAs) in CrowdStrike/EDRUnderstanding IOA rules and configurationsBest practices for custom IOA managementModule 9: Exclusions and QuarantinesManaging exclusions and quarantines in CrowdStrike/EDRUnderstanding exclusion and quarantine rules and configurationsBest practices for exclusion and quarantine managementModule 10: Exam PreparationPreparing for the CrowdStrike/EDR certification examTarget audience: IT professionals, cybersecurity professionals, system administrators, and anyone interested in learning how to manage and secure endpoints using CrowdStrike/EDR.
