Gain insight into the evolving landscape of cybersecurity and recognize the emerging challenges across industries

Understand the principles and benefits of the Autonomic Security Operations (ASO) framework

Explore the key components of the Continuous Deployment/Continuous Response (CD/CR) methodology

Learn practical strategies for implementing CD/CR pipelines

Evaluate vulnerability and misconfiguration management options in SCC to ensure issues are discoverable.

Analyze the findings generated by detector services and identify vulnerabilities associated with software weaknesses and resource misconfigurations.

Prioritize security findings using risk factors and built-in features to focus on the highest-impact remediation tasks across cloud resources.

Create compliance reports to maintain long-term security posture health.

Explain the setup required to activate Security Command Center and begin the initial virtual red teaming scenario.

Identify high-value resources in your environment.

Investigate security issues and findings based on the results of the virtual red teaming simulation.

Explain how to generate a risk report that captures prioritized findings for stakeholders.

Explain the purpose, structure, and key capabilities of the Google SecOps platform.

Describe the main components of SecOps architecture and how they interact within Google Cloud.

Configure authentication, access, and provisioning workflows for SecOps environments.

Compare and apply different SecOps deployment patterns, including single-tenant and multi-tenant setups.

Explain the architecture, data model, and core components of Google SecOps SIEM, including ingestion methods, UDM, normalization, and RBAC.

Ingest, normalize, and manage log data from multiple sources, using direct ingestion, APIs, cloud buckets, streaming services, and on-prem collectors

Perform effective investigations using raw logs, UDM search, statistical search, and data tables, and build dashboards.

Design, test, and optimize detections using YARA-L, including single-event, multi-event, composite rules, entity context, etc..

Explain the core concepts and benefits of Google SecOps SOAR.

Configure and set up SOAR to integrate with security tools and data sources.

Build and execute automated response actions and playbooks.

Generate and interpret SOAR reports and dashboards