With IBM Security QRadar SIEM, you can minimize the time gap between when suspicious activity occurs and when you detect it. Attacks and policy violations leave their footprints in the log events and network flows of your IT deployment. QRadar can connect the dots and provides you insight by performing the following tasks:Alerts to suspected attacks and policy violations in the IT environment Provides deep visibility into network, user, and application activity Puts security-relevant data from various sources in context with each other Provides reporting templates to meet operational and compliance requirements Provides reliable, tamper-proof log storage for forensic investigations and evidentiary use The exercises in this lab provide a broad introduction to the features of QRadar SIEM. The exercises cover the following topics: Navigating the web interfaceReviewing the Pulse app Investigating a suspicious activityUse QRadar Analyst Workflow app to investigate offenses Creating a report Managing the network hierarchy
