Students learn how to measure and visualize security data using the same tools that developers and engineers are using, as well as how to extract, load, and visualize data from cloud services, on-premise systems, and security tools. The course includes PowerShell scripting, automation, time-series databases, dashboard software, and even spreadsheets to present management with the strategic information it needs and to facilitate the work of your operations staff with sound tactical data.
SEC557 uses the ELVis (Extract, Load, and VISualize) technique to help you gather and present useful security and compliance information to your organization. Students will learn how to use PowerShell scripting and automated tools to gather measurements from cloud service providers, operating systems, Active Directory, security tools, web APIs, and datacenter infrastructure. For some data, you’ll prepare tactical visualizations on the fly by building spreadsheets, pivot tables, and graphs using scripts. Then import your data into the Graphite time-series database for strategic analysis and reporting. You’ll also build Grafana dashboards for use by management, security, compliance, and operations staff.
KEY TAKEAWAYS:
- Measure and report on compliance across the enterprise
- Visualize data for rapid absorption and decision making
- Supply appropriate data at the tactical and strategic levels
- Turn management requirements into actionable data
- Use the tools you already own to report on compliance
SKILLS LEARNED:
- Turn policies and management requirements into visually presented security metrics
- Reduce the time and effort required to gather and report on security and compliance data
- Measure security and compliance in cloud and traditional infrastructure
- Use PowerShell scripts and command-line tools to extract relevant data from cloud services
- Gather information from web APIs and security tools
- Extract information about virtualization infrastructure
- Query data from fleets of heterogenous systems
- Monitor servers and endpoints for proper configuration
- Work with data formats commonly used by security tools, DevOps pipelines, and cloud services
- Build tactical visual reports for use by operations staff and management
- Manage and load time-series databases for tracking metrics over time
- Build strategic dashboards for security and compliance
