Analyzing Network Data

Analyzing Network Data

Upcoming Classes

No classes have been scheduled, but you can always Request a Quote.


Network security monitoring (NSM) takes a bird’s-eye view of an organization, with the mindset that a threat actor will eventually need to cross a network boundary in order to accomplish their objective. In this course, you will learn about the principles of NSM, common tools (Bro and Suricata), and how to leverage the Elastic Stack for analytics.
Note: This course is a module of the Security Analytics specialization.


After completing this class, you’ll be able to use the Elastic Stack to harden your network security by reducing time to detection.

Topics Covered

  • Introduction to Network Security
  • Bro IDS Data
  • Suricata Data
  • Threat Hunting with Kibana
Download Course Outline


2-3 hours


3 hours


Security Analysts, Security Engineers, System Administrators, DevOps


We recommend taking the following foundational courses (or having equivalent knowledge):

Setup Requirements

  • Stable internet connection
  • Mac, Linux, or Windows
  • Latest version of Chrome or Firefox (other browsers not supported)
  • Disable any ad blockers and restart your browser before class

Additional Notes

Virtual Classroom Information
This instructor-led course is only taught in a virtual environment. We encourage participants to set up their systems prior to logging into the training environment the first day of the class. We also encourage being logged in 15 minutes prior to the start of class each day.

Training Specializations

This course is a module of the Security Analytics specialization. Find out how our focused Training Specializations can help you with your use case.

General Training Information
Have training questions? Review our FAQ or email us.