Logrhythm 305 Analyst Product Training Syllabus
Logrhythm 305 Analyst Product Training Syllabus
October 2018
305 – Analyst Product Training
The 305 – Analyst Product Training is a three-day In-person Instructor Led, Virtual Instructor Led, or On-
site Instructor Led training course that targets the basic day-to-day analytical activities performed within the
LogRhythm Platform.
Prerequisites
Participants are required to complete the following computer-based training (CBT) modules prior to arrival at
the 305 – Analyst Product Training:
• Introduction to LogRhythm: What is a SIEM?
• Introduction to LogRhythm: Administrators and Analysts
Participants must pass a ten-question quiz at the end of each course, with a score of 70% or more, to receive
credit for completion.
The course includes hands-on exercises to provide experience with the analytical functions of the LogRhythm
Platform. Participants can expect to leave with an understanding of analytical functions within the LogRhythm
platform and will be equipped with the tools to effectively analyze the log data collected.
• Security 101
• Security Types
• Threat Lifecycle Management in the SIEM
• Practice Exercise: Ransomware Attack
• Challenge: Botnet Detection
• Challenge: Reducing Downtime
• Challenge: Comply with Acceptable Use Policies
Certification
LogRhythm Security Analyst (LRSA)
By attending and completing the training, participants will be prepared to take an exam to obtain the
LogRhythm Security Analyst (LRSA) certificate.
The LRSA exam is a written exam comprised of multiple-choice questions testing a candidate’s knowledge on
using the LogRhythm platform for the analysis of data. Candidates will have 90-minutes to complete the
exam. Candidates must pass the written exam with a score of 70% or more to receive a LogRhythm Security
Analyst (LRSA) certificate. If a passing score is not obtained, candidates must wait 30 days before taking the
exam again.