This course covers the Trellix Helix workflow, triaging Helix alerts, creating and scoping cases from an alert, and using Helix during an investigation.Hands-on activities include configuring data sources, writing TQL searches, as well as analyzing and validating Helix alerts.
Who Should Attend:
Network security professionals, incident responders and Trellix administrators and analysts who use Helix to analyze data in noisy event streams.
To learn more about this course, or to schedule a private session for your team, contact your Trellix account manager.
No Public Classes Scheduled, Please Contact Us to Schedule a Private Class for Your Company.
Cost
Number of Vouchers Needed: 22
If offered, seats for public courses can be purchased through your Trellix Partner or Reseller. Private training sessions are available for instructor led training.