This intermediate level certification is intended for security administrators who wish to validate their comprehensive knowledge of IBM Cloud Pak for Security v1.10.
These administrators will have knowledge and experience installing, configuring, administering, and maintaining IBM Cloud Pak for Security in a cloud environment, on premise, and in a SaaS environment. These administrators are capable of performing advanced tasks related to the daily management and operation of the Cloud Pak for Security environment including IBM Cloud Pak foundational services and the Red Hat OpenShift Container Platform. The Cloud Pak for Security Administrator is responsible for configuring and administering Data Explorer, Threat Intelligence Insights, Threat Investigator, and Cases.
These administrators are responsible for the security of the Cloud Pak for Security environment, which may involve appropriate access to the cloud hosting environment, a working knowledge of the Red Hat OpenShift Container Platform, and an understanding of the security structure of their organization.
Key Areas of Competency
- Knowledge of cloud architecture
- Knowledge of Cloud Pak for Security user administration
- Familiarity with air-gapped deployment of Cloud Pak for Security
- Knowledge of how to perform Cloud Pak for Security version upgrades
- Knowledge of STIX/TAXII based threat and security feeds
- Working knowledge of basic troubleshooting techniques
- Knowledge of XDR Connect Threat Management concepts
- Ability to connect IBM and third-party data sources and assets
- Knowledge of Red Hat OpenShift Container Platform [CLI & UI]
- Knowledge of the CP4S product features, use cases and applications
- Understand the requirements to install the Cloud Pak for Security platform in a cloud environment
- Familiarity with SIEM systems in order to configure associated data sources and/or QRadar Proxy
- Ability to use IBM Cloud Pak foundational services components (such as logging) to manage CP4S
Prerequisite Knowledge
Knowledge and foundational skills one must possess before acquiring skills measured on the certification test. These foundational skills are NOT measured on the test.
- Working knowledge of Linux
- Knowledge of troubleshooting techniques
- Knowledge of Red Hat OpenShift Container Platform
- Working knowledge of command line tools used to administer supported cloud environments
This certification requires one exam.
During exam development, the Subject Matter Experts (SMEs) define all of the tasks, knowledge and experience that an individual would need in order to successfully fulfill their role with the product or solution. These are represented by the objectives below and the questions on the exam are based upon these objectives.
-
Section 1: Installation15%
- Verify Cloud Pak for Security requirements
- Setup OpenShift Cluster
- Install Cloud Pak for Security
-
Section 2: Configuration25%
- Configure identity providers in Cloud Pak for Security
- Configure accounts within Cloud Pak for Security
- Configure Cloud Pak for Security licenses and usage
- Configure applications
- Connect data sources
-
Section 3: Administration25%
- Administer users
- Manage application-specific settings
- Create Cloud Pak for Security API keys
- Manage cases
- Create administrative dashboards
-
Section 4: Maintain the Environment22%
- Evaluate and maintain Cloud Pak for Security licensing
- Maintain Cloud Pak for Security
- Maintain Red Hat OpenShift Cluster Platform
- Backup and restore Cloud Pak for Security
- Upgrade Cloud Pak for Security
-
Section 5: Troubleshooting13%
- Troubleshoot Cloud Pak for Security
- Troubleshoot Red Hat OpenShift Container Platform
Reviews
There are no reviews yet.