Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore how excessive alerts and unlabeled data create "noise pollution" that impairs SOC analyst performance and learn practical strategies to reduce false positives in cybersecurity operations. Follow a realistic scenario where a high-severity alert on a Friday afternoon threatens to disrupt weekend plans, only to discover it's actually Windows Delivery Optimization service operating normally on port 7680. Understand how Windows devices have participated in peer-to-peer networks by default since Windows 10 to accelerate update delivery, and gain deep insights into the DO ecosystem to better interpret XDR telemetry. Discover noise reduction techniques applicable at various stages of the telemetry lifecycle that can be applied to other services, protocols, and XDR artifacts. Learn methods to enhance how CTI analysts operationalize indicators of compromise, prevent alert fatigue, and improve overall SOC efficiency while understanding how both blue teams can mitigate and red teams can exploit noise pollution effects.
