Course
digicode: SNSOF
ServiceNow: Security Operations (SecOps) Fundamentals
Course facts
- Demonstrating Baseline Security Incident Response Lifecycle
- Identifying Security Incident Response Workflow-Based Responses
- Partnering with Now Assist AI to summarize security incidents
- Partnering with Now Assist AI to generate closure notes
- Configuring Vulnerability Assessment and Management Response Tools
- Exploring the Vulnerability Response Application
- Creating Watch Topics and Explore Remediation Efforts
- Exploring the Threat Intelligence Application
- Employing Threat Sources and Explore Attack Modes and Methods
- Defining Observables, Indicators of Compromise (IoC), IoC Look Ups
- Viewing and analyzing Security Operations Data
1 Security Operations Overview
You will gain an understanding of the current state of security, explore security maturity, and be introduced to the ServiceNow Security Operations application and essential platform concepts.
2 Security Operations Common Functionality
The focus of this part is to investigate the common functionalities and features shared across the Security Operations suite.
3 Vulnerability Response
This part provides a comprehensive overview of Vulnerability Response, detailing its application across infrastructure, applications, and containers, and covers related topics like compliance and security posture control.
4 Security Incident Response
An exploration of the Security Incident Response application is provided, including its components, configuration, workflow-based responses, the MSIM Workspace, and the use of Now Assist AI.
5 Threat Intelligence
You will define ServiceNow Threat Intelligence, set up various threat sources, and gain a thorough understanding of observables, Indicators of Compromise (IoCs), and the Threat Intelligence Security Center.
During this two-day interactive training course, you will access the ServiceNow platform in your own student instance loaded with test data.
The course weaves a scenario throughout, simulating situations you might find in the real world.
This course is suitable for anyone who will be working on a ServiceNow implementation of the Security Operations applications, or configuring and administering Security Operations applications post-implementation, such as:
- Process Owners who will be champions for their process domain
- Technical Consultants and Administrators who will be configuring, developing, or supporting the Security Operations applications
- IT Project/Program or Engagement Managers who will be leading implementations of the Security Operations applications in ServiceNow.
- Operations Managers who have oversight of work which will be facilitated using Security Operations applications in ServiceNow.
Take a look at the «Welcome to ServiceNow» and «Get Started with Now Create» courses, which you can attend on demand.
We recommend attending the following courses beforehand: