Claroty Cybersecurity Analyst

This course is intended specifically for security engineers and CTD operators who are tasked with responding to security-related alerts within Claroty’s CTD solution. This course provides the knowledge base necessary to enable personnel to operate independently while responding appropriately and effectively to alerts generated within CTD.

On successfully completing this course, learners:

• Will have received a demonstration of the capabilities of the Continuous Threat Detection (CTD) solution, in context of a relevant CTD environment.

• Will be able to perform basic CTD troubleshooting.

• Will have received an introduction to the technical support methodologies applied to Claroty products and systems.

• Will have been introduced to various ‘must-know’ technical terms used in industrial control systems and the OT arena, and in the operation of various systems within CTD.

• Will have been familiarized with the various data-collection methods employed within CTD, including Passive detection, Active detection and AppDB.

• Will have been given an overview of CTD’s logs structure and its workings (including CTD data directories and user-interface explanation types).

• Will have been familiarized with essential ‘everyday’ commands issued through ClarotyOS.

• Will have been familiarized with essential Linux-based commands that are issued through ClarotyOS to validate certain system-health scenarios.

• Will know how to run the built-in health-check script, with the goal of running sanity tests on local Claroty machines.

• Will have been given an overview of the shorthand LKPO_magic commands used within the CTD operating system’s command-line interface.

• Will be able to perform basic CTD system troubleshooting.