Virtual Event

Ansible Security Automation Workshop for Charter Communications

July 30, 20209:00 AM - 4:00 PM(GMT-04:00) Eastern Time (US & Canada)

Overview

Who is this workshop best for?

Our instructor-led Ansible® Security Automation virtual hands-on workshop is intended for people who want to learn how Ansible can be leveraged in security environments. 

The workshop is designed for technical professionals in automation (part of a cross-functional team or supporting other vertical teams in their company), security operations and vulnerability management. No previous knowledge about Ansible is required to access this workshop, though it certainly helps.

The workshop shows, step by step, how you can reach security automation goals using Ansible to orchestrate the following three investigation and response activities involving multiple security tools: 

  • An enterprise firewall (CheckPoint Next Generation Firewall)
  • An intrusion detection system (Snort)
  • A SIEM (Splunk Enterprise Security)

Requirements for Attendees

  • Attendees must come with a laptop with admin rights and the ability to SSH to a lab environment hosted in a public cloud.
  • Attendees should have working knowledge of using SSH and command line shell (BASH) as well as a conceptual understanding of linux system administration (how to use simple commands like cd, ls, mv, mkdir, etc).
  • Attendees should have working knowledge of at least one Linux text editor (nano, pico, vi/vim, zile, emacs) with which to write Ansible playbooks.

Topics

  • Introduction to Ansible Security Automation
  • How Ansible integrates with security products
  • Explore the lab environment:
    • Ansible execution host
    • Enterprise Firewall: Check Point Next Generation Firewall
    • IDS: Snort
    • SIEM: Splunk Enterprise Security
  • Automate security platforms:
    • Execute your first security automation playbook - meet Check Point NGFW
    • Execute a security automation playbook targeting Snort IDS
    • Execute a security automation playbook targeting Splunk ES
  • Tie the 3 technologies together:
    • Use case 1: Detection and triage of suspicious activities
    • Use case 2: Threat hunting<
    • Use case 3: Incident response
  • Wrap it all up

Virtual workshop details:

Date: Thursday, July 30, 2020

Time: 9:00 a.m. – 4:00 p.m. EDT

If you have any questions, please email khansell@redhat.com

Agenda

Time Session
9:00 a.m. - 9:30 a.m.
Welcome and Introductions
9:30 a.m. - 12:00 p.m. Labs
12:00 p.m. - 1:00 p.m.
Lunch Break
1:00 p.m. - 4:00 p.m. Labs
4:00 p.m. Day Ends

Event Details


Location
BlueJeans
Bluejeans
Bluejeans, North Carolina  Bluejeans


Date: Thursday, November 1, 2019

Time: X:XX a.m. – X:XX p.m.

What is an Ansible Workshop?

Who should attend?

If you have any questions please send us an email.

Hear from the experts

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed quis ornare erat, sit amet aliquet tortor. Aenean dapibus leo nec commodo blandit. Aliquam erat volutpat. Aenean ac rutrum nisl, non volutpat metus

Sponsors