<!DOCTYPE html> <html lang='en'> <head> <title>Google Cloud Skills Boost</title> <meta name="action-cable-url" content="/cable" /> <script> //<![CDATA[ window.gon={};gon.deployment="google-run"; //]]> </script> <script> window.dataLayer = window.dataLayer || []; const properties = JSON.parse(atob('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')); properties.event = 'user_properties'; dataLayer.push(properties); </script> <script> window.dataLayer = window.dataLayer || []; function gtag() { if (arguments[0] === 'event') { dataLayer.push({ event: arguments[1], eventParams: arguments[2] }, { eventParams: undefined }); } else { dataLayer.push(arguments); } } let gtmLoaded = false; function glueCookieNotificationBarLoaded() { if (!gtmLoaded) { (function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start': new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0], j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src= 'https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f); })(window,document,'script','dataLayer',"GTM-MBRHNDG7"); gtmLoaded = true; } } document.addEventListener('turbo:load', () => { dataLayer.push({ event: 'page_view' }); }); </script> <script src="https://cdn.qwiklabs.com/assets/hallofmirrors/polyfills/webcomponents-loader-2e147cb1679d97581f981243bfc2d1c03dc34a58.js"></script> <script src="https://cdn.qwiklabs.com/assets/vendor-5ee6eafe71fd3831091397e1aa344044a8642273.js"></script> <script src="https://cdn.qwiklabs.com/assets/application-b63927e009724d5e97f1947b71c466dab777dace.js"></script> <script src="https://cdn.qwiklabs.com/assets/hallofmirrors/hallofmirrors-b4e8637d49337c7ac1dbce61e0af43e14ac7c629.js"></script> <script src="https://support.google.com/inapp/api.js"></script> <script type='application/ld+json'> {"@context":"https://schema.org/","@id":"https://www.cloudskillsboost.google/paths/351","@type":"Course","name":"Google SIEM \u0026 SOAR Learning Path","description":"The Chronicle learning path covers the SIEM and SOAR tools available in Google Cloud. The courses in this path will showcase the skills needed within Chronicle to parse data, build rules, develop playbooks, respond to incidents and even integrate with 3rd party capabilities. This broad set of content will prepare you on your cloud security journey with Chronicle SIEM and SOAR.","image":["https://cdn.qwiklabs.com/wqeyFtu69XW6sX5nO6VK6gMvjnJYpINxnFhTJt%2FeL6o%3D"],"provider":{"@type":"Organization","name":"Google Cloud","url":"https://cloud.google.com/learn"},"publisher":{"@type":"Organization","name":"Google Cloud Skills Boost","url":"https://cloudskillsboost.google"},"datePublished":"2024-05-06","inLanguage":"en","availableLanguage":["en"],"offers":[{"@type":"Offer","category":"Partially Free"},{"@type":"Offer","category":"Subscription"}],"hasCourseInstance":[{"@type":"CourseInstance","courseMode":"Online","courseWorkload":"PT21H3M7S"}],"hasPart":[{"@type":"Course","name":"Security Practices with Google Security Operations - SIEM","description":"\u003cp\u003eLearn the technical aspects you need to know about Chronicle and how it can help you detect and action threats.\u003c/p\u003e","url":"https://www.cloudskillsboost.google/course_templates/442"},{"@type":"Course","name":"SOAR Fundamentals","description":"\u003cp\u003eThis course will familiarize you with the core functionality of Chronicle, including the user interface, connections, and settings.\u003c/p\u003e","url":"https://www.cloudskillsboost.google/course_templates/569"},{"@type":"Course","name":"Google Security Operations - SIEM Rules","description":"Get hands-on experience applying and building rules for Chronicle. You learn what YARA-L is and how to customize \u0026 create event rules.","url":"https://www.cloudskillsboost.google/course_templates/690"},{"@type":"Course","name":"Google Security Operations - SOAR Analyst","description":"\u003cp\u003eThis course helps you understand how to use Chronicle to properly handle security incidents.\u003c/p\u003e","url":"https://www.cloudskillsboost.google/course_templates/567"},{"@type":"Course","name":"Google Security Operations - SOAR Developer","description":"\u003cp\u003eThis course helps developers customize Chronicle and augment its abilities with third party integrations.\u003c/p\u003e","url":"https://www.cloudskillsboost.google/course_templates/568"}]} </script> <meta name="csrf-param" content="authenticity_token" /> <meta name="csrf-token" content="F5hSPEOg4R7aeGBCRU/xinb/Q8VJ/QpWwtmrHxP5Y3t04Gjbn6tLy2Pj/Eokj5YJj149AxqaHHPUdcsg8Z/izg==" /> <meta content='width=device-width, initial-scale=1.0, user-scalable=yes' name='viewport'> <meta content='1rRsY0INj8RvwB5EF5pwdxt2A2P9aDgAlsICaJ0d5w0' name='google-site-verification'> <meta content='#3681E4' property='msapplication-TileColor'> <meta content='/favicon-144.png' property='msapplication-TileImage'> <meta content='{&quot;userId&quot;:58267487,&quot;experimentIds&quot;:[&quot;support_callouts&quot;,&quot;iw_ai_assistant&quot;,&quot;front_door_landing_page&quot;,&quot;reroute_new_interview_warmup&quot;,&quot;program_announcements&quot;,&quot;gcsbo_free&quot;,&quot;alexandria_subscriptions_pagination&quot;,&quot;entity_api_keys&quot;,&quot;hide_price&quot;,&quot;innovator_membership&quot;,&quot;search_autocomplete&quot;,&quot;ai_skills&quot;,&quot;search_async&quot;,&quot;alexandria_show_bundle_errors&quot;,&quot;catalog_filters_button&quot;,&quot;new_cards&quot;,&quot;show_annual_purchase_now&quot;,&quot;chat_off_for_signed_out_users&quot;,&quot;course_monetization&quot;,&quot;landing_page&quot;,&quot;innovator_membership_modal&quot;,&quot;learning_plan_search&quot;,&quot;monsoon_quota_v2&quot;,&quot;dedup_badge&quot;,&quot;rise_poc&quot;,&quot;agressive_monsoon_quota&quot;,&quot;tell_navy_allowed_zones&quot;,&quot;canonical_domain_redirect&quot;,&quot;feedback&quot;,&quot;guest_user&quot;,&quot;search_sort_by&quot;,&quot;oauth_risc_shutoff&quot;,&quot;teams&quot;,&quot;one_tap&quot;,&quot;used_in&quot;,&quot;credly_integration_announcement_modal&quot;,&quot;monsoon_quota&quot;,&quot;onramp&quot;,&quot;cache_explore_page_result&quot;,&quot;content_provider_admin&quot;,&quot;show_interview_warmup&quot;,&quot;hide_unpopular_filters&quot;,&quot;credly&quot;,&quot;developer_premium&quot;,&quot;header_search_bar&quot;,&quot;switch_path_and_explore_headers&quot;,&quot;new_report_fields&quot;,&quot;search_suggestions&quot;]}' name='help-api-product-data'> <meta content='{&quot;groupIds&quot;:[&quot;non_suadmins&quot;,&quot;students&quot;,&quot;non_organization&quot;,&quot;non_program&quot;]}' name='help-api-custom-data'> <meta content='Qwiklabs provides real Google Cloud environments that help developers and IT professionals learn cloud platforms and software, such as Firebase, Kubernetes and more.' name='description'> <meta content='Qwiklabs' name='author'> <meta content='Google Cloud Skills Boost' property='og:title'> <meta content='website' property='og:type'> <meta content='/favicon-144.png' property='og:image'> <meta content='Qwiklabs' property='og:site_name'> <meta content='Qwiklabs provides real Google Cloud environments that help developers and IT professionals learn cloud platforms and software, such as Firebase, Kubernetes and more.' property='og:description'> <meta content='/qwiklabs_logo_900x887.png' property='og:logo' size='900x887'> <meta content='/qwiklabs_logo_994x187.png' property='og:logo' size='994x187'> <meta property="og:url" content="https://www.cloudskillsboost.google/paths/187" /><link href="https://www.cloudskillsboost.google/paths/187" rel="canonical" /> <link href='https://cdn.qwiklabs.com/X46FrQX4iLxHW5MxL8jICvgZM0evMEKscCeQO%2BazGdo%3D' rel='shortcut icon' type='image/x-icon'> <link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Oswald:400|Roboto+Mono:400,700|Roboto:300,400,500,700|Google+Sans:300,400,500,700|Google+Sans+Display:400|Material+Icons|Google+Material+Icons|Google+Sans+Text:400,500,700" media="screen" /> <link rel="stylesheet" href="https://cdn.qwiklabs.com/assets/application-695216663cb0699363a80338f91725185aa37b9c.css" media="all" /> <link rel="stylesheet" href="https://www.gstatic.com/glue/cookienotificationbar/cookienotificationbar.min.css" media="screen" /> <style> :root { --primary-text-on-surface-color: #0b57d0; --primary-text-on-surface-color-dark: #0a4eba; --primary-text-on-surface-color-darker: #0945a4; --primary-text-on-surface-color-darkest: #083c8f; --primary-surface-color: #0b57d0; --primary-surface-color-rgb: 11,87,208; --primary-surface-color-light: #cfe0fc; --primary-surface-color-lightest: #e7f0fe; --text-on-primary-color: #ffffff; --accent-text-on-surface-color: #f000e8; --accent-surface-color: #f9ab00; --accent-surface-color-rgb: 249,171,0; --accent-surface-color-light: #ffefcc; --text-on-accent-color: #202124; } </style> </head> <body class='learning-plans-body learner-layout-body '> <ql-drawer-container class='body-container'> <ql-drawer id='app-nav' mode='over' slot='drawer' width='288'> <div class='nav-panel__logo'> <div class="custom-logo"><img alt="Google Cloud Skills Boost" height="24" aria-label="Google Cloud Skills Boost" src="https://cdn.qwiklabs.com/PGyhmgS3zZncIEGywnx5UXsKwepRRFQ9BhAg%2FWHNrlQ%3D" /></div> </div> <nav class='ql-sidenav'> <ql-sidenav-item href='/catalog' icon='school' label='Explore'></ql-sidenav-item> <ql-sidenav-item active href='/paths' icon='playlist_add_check' label='Paths'></ql-sidenav-item> <ql-sidenav-item href='/subscriptions' icon='subscriptions' label='Subscriptions'></ql-sidenav-item> </nav> </ql-drawer> <ql-drawer-content class='body-content' slot='drawer-content'> <div class='sticky'> <ql-toolbar class='app-toolbar' jumpEnabled role='banner'> <div class='toolbar-navigation' slot='navigation'> <ql-toggle-button for="app-nav" icon="menu" label="Toggle navigation drawer" tip="Menu" class=""></ql-toggle-button> </div> <div class='toolbar-title ql-title-medium' slot='title'><a class="custom-logo" aria-label="Google Cloud Skills Boost" href="/"><div class="custom-logo"><img alt="Google Cloud Skills Boost" height="24" aria-label="Google Cloud Skills Boost" src="https://cdn.qwiklabs.com/PGyhmgS3zZncIEGywnx5UXsKwepRRFQ9BhAg%2FWHNrlQ%3D" /></div></a> </div> <div class='toolbar-tabs' role='tablist' slot='tabs'><ql-tab href='/catalog' label='Explore'></ql-tab> <ql-tab href='/paths' label='Paths'></ql-tab> <ql-tab href='/subscriptions' label='Subscriptions'></ql-tab> <div class='search-bar-container'> <form class="header-search-form" action="/catalog" accept-charset="UTF-8" method="get"><input name="utf8" type="hidden" value="&#x2713;" autocomplete="off" /> <input autocomplete='off' class='header-search-input' id='searchbar-autocomplete' name='keywords' placeholder='Search'> <div class='elevation-3' id='searchbar-autocomplete-loading-icon'> <ql-spinner></ql-spinner> <div class='ql-body-small'>Loading...</div> </div> <div class='elevation-3' id='searchbar-autocomplete-no-results'> <div class='ql-body-small'>No results found.</div> </div> <ul class='hide' id='searchbar-autocomplete-menu'></ul> </form> <ql-icon-button class='search-bar-button' icon='search' label='Search for Cloud Skills Boost content'></ql-icon-button> <ql-icon-button class='exit-search-button' icon='close' label='Exit search'></ql-icon-button> </div> </div> <div class='toolbar-actions' slot='action'> <ql-icon-button icon='share' id='share_187' label='Share on social media' tip='Share'></ql-icon-button> <ql-menu for='share_187'> <ql-menu-item data-analytics-action='Shared to LinkedIn Feed.' data-analytics-category='LearningPlan' data-analytics-label='Google SIEM &amp; SOAR Learning Path' href='https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fwww.cloudskillsboost.google%2Fpaths%2F187%3Futm_medium%3Dsocial%26utm_source%3Dlinkedin%26utm_campaign%3Dql-social-share' icon='post_linkedin' label='Share on LinkedIn Feed' role='link' target='_blank'> <span class='label'>Share on LinkedIn Feed</span> </ql-menu-item> <ql-menu-item data-analytics-action='Shared to Twitter.' data-analytics-category='LearningPlan' data-analytics-label='Google SIEM &amp; SOAR Learning Path' href='https://twitter.com/intent/tweet?text=Excited%20to%20share%20what%20I%E2%80%99m%20learning%20on%20%23GoogleCloudSkillsBoost&amp;url=https%3A%2F%2Fwww.cloudskillsboost.google%2Fpaths%2F187%3Futm_medium%3Dsocial%26utm_source%3Dtwitter%26utm_campaign%3Dql-social-share&amp;hashtags=' icon='post_twitter' label='Twitter' role='link' target='_blank'> <span class='label'>Twitter</span> </ql-menu-item> <ql-menu-item data-analytics-action='Shared to Facebook.' data-analytics-category='LearningPlan' data-analytics-label='Google SIEM &amp; SOAR Learning Path' href='https://facebook.com/sharer.php?display=popup&amp;u=https%3A%2F%2Fwww.cloudskillsboost.google%2Fpaths%2F187%3Futm_medium%3Dsocial%26utm_source%3Dfacebook%26utm_campaign%3Dql-social-share' icon='post_facebook' label='Facebook' role='link' target='_blank'> <span class='label'>Facebook</span> </ql-menu-item> <ql-copyable-input label='Share Link' value='https://www.cloudskillsboost.google/paths/187'></ql-copyable-input> </ql-menu> <ql-icon-button class='header-search-button' icon='search' label='Search for Cloud Skills Boost content' tip='Search'></ql-icon-button> <ql-icon-button class='mobile-hide' icon='help_outline' id='help-menu-button' label='Open help menu' tip='Help'></ql-icon-button> <ql-menu for='help-menu-button' id='help-menu'> <ql-menu-item data-analytics-action='opened_help' data-analytics-label='' label='Help Center' onclick='hallofmirrors.helpService.startHelp({&quot;productData&quot;:{&quot;userId&quot;:58267487},&quot;context&quot;:&quot;&quot;})'></ql-menu-item> <ql-menu-item href='mailto:support@qwiklabs.com' label='Email support'></ql-menu-item> <ql-menu-item label='Send feedback' onclick='userfeedback.api.startFeedback( { &#39;productId&#39;: &#39;5080217&#39;, &#39;enableAnonymousFeedback&#39;: true, &#39;authuser&#39;: &#39;undefined&#39;, &#39;locale&#39;: &#39;en&#39; }, { &#39;user_id&#39;: &#39;58267487&#39;, &#39;current_organization&#39;: &#39;&#39; })'></ql-menu-item> <ql-menu-item href='https://reportingwidget.google.com/widget/54?cid=1&amp;url=https://www.cloudskillsboost.google/paths/187?' label='Report Illegal Content'></ql-menu-item> </ql-menu> <ql-icon-button class='mobile-hide' icon='language' id='language' label='Select your language preference' tip='Language'></ql-icon-button> <ql-menu for='language'> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='ar' href='/paths/187?locale=ar' label='العربية‬‎' lang='ar'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='de' href='/paths/187?locale=de' label='Deutsch' lang='de'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='en' href='/paths/187?locale=en' label='English' lang='en'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='es' href='/paths/187?locale=es' label='español (Latinoamérica)' lang='es'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='fr' href='/paths/187?locale=fr' label='français' lang='fr'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='fr_CA' href='/paths/187?locale=fr_CA' label='français (Canada)' lang='fr-CA'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='he' href='/paths/187?locale=he' label='עברית' lang='he'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='id' href='/paths/187?locale=id' label='bahasa Indonesia' lang='id'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='it' href='/paths/187?locale=it' label='italiano' lang='it'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='ja' href='/paths/187?locale=ja' label='日本語' lang='ja'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='ko' href='/paths/187?locale=ko' label='한국어' lang='ko'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='pl' href='/paths/187?locale=pl' label='polski' lang='pl'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='pt_BR' href='/paths/187?locale=pt_BR' label='português (Brasil)' lang='pt-BR'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='pt_PT' href='/paths/187?locale=pt_PT' label='português (Portugal)' lang='pt-PT'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='ru' href='/paths/187?locale=ru' label='русский' lang='ru'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='tr' href='/paths/187?locale=tr' label='Türkçe' lang='tr'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='uk' href='/paths/187?locale=uk' label='українська' lang='uk'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='zh' href='/paths/187?locale=zh' label='简体中文' lang='zh'></ql-menu-item> <ql-menu-item data-analytics-action='changed_locale' data-analytics-label='zh_TW' href='/paths/187?locale=zh_TW' label='繁體中文' lang='zh-TW'></ql-menu-item> </ql-menu> <ql-button class='mobile-hide' data-analytics-action='clicked_header_sign_in' href='/users/sign_in' label='Sign in' text></ql-button> <ql-button data-analytics-action='clicked_header_join' href='/users/sign_up' label='Join'></ql-button> <script src='https://accounts.google.com/gsi/client'></script> <div data-authenticity_token='h2zjgkuq/zJZNPrClqd7HgnmixIoG4xaZ4TxiGolq6PkFNlll6FV5+CvZsr3Zxyd8Ef11Ht8mn9xKJG3iEMqFg==' data-cancel_on_tap_outside='false' data-client_id='1023251155897-tb54g624q9e77gtsrnemgv4c2ihekurv.apps.googleusercontent.com' data-login_uri='/auth/google?tos=false' data-prompt_parent_id='g_id_onload' data-turbo='false' id='g_id_onload'></div> </div> </ql-toolbar> <div id='callout-container'> </div> </div> <div class='page-header'> <ql-toolbar class='page-toolbar'> <h1 class='toolbar-title ql-title-medium' slot='title'>Google Cloud Skills Boost</h1> <div class='toolbar-actions' slot='action'></div> </ql-toolbar> </div> <main id='jump-content'> <div class='learning-plan-details-wrapper'> <div class='top-matter'> <div> <img alt='' class='learning-plan-logo' src='https://cdn.qwiklabs.com/W9G62HWW%2FBLFcNjtpGMH2Q0sfeTLx4xMlq593WiejG0%3D'> <h1 class='learning-plan-title'>Google SIEM &amp; SOAR Learning Path</h1> </div> <h2 class='ql-headline-small'></h2> <div class='learning-plan-details'> <div class='ql-title-medium detail'> <ql-icon size='20'>school</ql-icon> 5 activities </div> <div class='ql-title-medium detail'> <ql-icon size='20'>update</ql-icon> Last updated 7 months </div> <div class='ql-title-medium detail'> <ql-icon size='20'>person</ql-icon> Managed by Google Cloud </div> </div> <div class='ql-body-large'>The Chronicle learning path covers the SIEM and SOAR tools available in Google Cloud. The courses in this path will showcase the skills needed within Chronicle to parse data, build rules, develop playbooks, respond to incidents and even integrate with 3rd party capabilities. This broad set of content will prepare you on your cloud security journey with Chronicle SIEM and SOAR.</div> <ql-button href='/paths/187/select_active' icon='arrow_forward' method='post'> Start learning path </ql-button> </div> <div class='activities'> <div class='grid'> <ql-card elevation='0' padded> <div class='activity-card'> <div class='content'> <a class='activity-link' href='/paths/187/course_templates/442'> <img alt="" class="thumbnail" src="https://cdn.qwiklabs.com/6IqIZLDb9wDPHfbCZZntvmIRUU2v7NWJVeax%2B2EdP5Q%3D" /> </a> <div class='title'> <h2 class='ql-title-large'>01</h2> <h2 class='ql-title-large'>Security Practices with Google Security Operations - SIEM</h2> </div> <div class='activity-details'> <div class='ql-title-medium detail'> <ql-icon size='20'>book</ql-icon> Course </div> <div class='ql-title-medium detail'> <ql-icon size='20'>access_time</ql-icon> 8 hours </div> <div class='ql-title-medium detail'> <ql-icon size='20'>show_chart</ql-icon> Intermediate </div> </div> <p class='ql-body-medium description'> Learn the technical aspects you need to know about Chronicle and how it can help you detect and action threats. </p> </div> <div class='buttons'> <ql-button href='/paths/187/course_templates/442' icon='arrow_forward' tonal> Start course </ql-button> </div> </div> </ql-card> <ql-card elevation='0' padded> <div class='activity-card'> <div class='content'> <a class='activity-link' href='/paths/187/course_templates/569'> <img alt="" class="thumbnail" src="https://cdn.qwiklabs.com/Xu2lVoEF8olJGqhofVB4xKk1scTaEnCGOvIMNejnPHA%3D" /> </a> <div class='title'> <h2 class='ql-title-large'>02</h2> <h2 class='ql-title-large'>SOAR Fundamentals</h2> </div> <div class='activity-details'> <div class='ql-title-medium detail'> <ql-icon size='20'>book</ql-icon> Course </div> <div class='ql-title-medium detail'> <ql-icon size='20'>access_time</ql-icon> 4 hours </div> <div class='ql-title-medium detail'> <ql-icon size='20'>show_chart</ql-icon> Intermediate </div> </div> <p class='ql-body-medium description'> This course will familiarize you with the core functionality of Chronicle, including the user interface, connections, and settings. </p> </div> <div class='buttons'> <ql-button href='/paths/187/course_templates/569' icon='arrow_forward' tonal> Start course </ql-button> </div> </div> </ql-card> <ql-card elevation='0' padded> <div class='activity-card'> <div class='content'> <a class='activity-link' href='/paths/187/course_templates/690'> <img alt="" class="thumbnail" src="https://cdn.qwiklabs.com/assets/learning_plans/activity_thumbnail_course-151d92b9399572d2384c85c70f8596f22b2c18c2.png" /> </a> <div class='title'> <h2 class='ql-title-large'>03</h2> <h2 class='ql-title-large'>Google Security Operations - SIEM Rules</h2> </div> <div class='activity-details'> <div class='ql-title-medium detail'> <ql-icon size='20'>book</ql-icon> Course </div> <div class='ql-title-medium detail'> <ql-icon size='20'>access_time</ql-icon> 4 hours 15 minutes </div> <div class='ql-title-medium detail'> <ql-icon size='20'>show_chart</ql-icon> Introductory </div> </div> <p class='ql-body-medium description'> Get hands-on experience applying and building rules for Chronicle. You learn what YARA-L is and how to customize &amp; create event rules. </p> </div> <div class='buttons'> <ql-button href='/paths/187/course_templates/690' icon='arrow_forward' tonal> Start course </ql-button> </div> </div> </ql-card> <ql-card elevation='0' padded> <div class='activity-card'> <div class='content'> <a class='activity-link' href='/paths/187/course_templates/567'> <img alt="" class="thumbnail" src="https://cdn.qwiklabs.com/C14kV62Bx9qP5Ef5oOumdLHaZsWgOw4Stwzdidy%2F4Sg%3D" /> </a> <div class='title'> <h2 class='ql-title-large'>04</h2> <h2 class='ql-title-large'>Google Security Operations - SOAR Analyst</h2> </div> <div class='activity-details'> <div class='ql-title-medium detail'> <ql-icon size='20'>book</ql-icon> Course </div> <div class='ql-title-medium detail'> <ql-icon size='20'>access_time</ql-icon> 4 hours 15 minutes </div> <div class='ql-title-medium detail'> <ql-icon size='20'>show_chart</ql-icon> Intermediate </div> </div> <p class='ql-body-medium description'> This course helps you understand how to use Chronicle to properly handle security incidents. </p> </div> <div class='buttons'> <ql-button href='/paths/187/course_templates/567' icon='arrow_forward' tonal> Start course </ql-button> </div> </div> </ql-card> <ql-card elevation='0' padded> <div class='activity-card'> <div class='content'> <a class='activity-link' href='/paths/187/course_templates/568'> <img alt="" class="thumbnail" src="https://cdn.qwiklabs.com/sMPcSREPYt1jzd7o3c6et1kJRy89nvCYs8x9DdvY4hw%3D" /> </a> <div class='title'> <h2 class='ql-title-large'>05</h2> <h2 class='ql-title-large'>Google Security Operations - SOAR Developer</h2> </div> <div class='activity-details'> <div class='ql-title-medium detail'> <ql-icon size='20'>book</ql-icon> Course </div> <div class='ql-title-medium detail'> <ql-icon size='20'>access_time</ql-icon> 1 hour 15 minutes </div> <div class='ql-title-medium detail'> <ql-icon size='20'>show_chart</ql-icon> Advanced </div> </div> <p class='ql-body-medium description'> This course helps developers customize Chronicle and augment its abilities with third party integrations. </p> </div> <div class='buttons'> <ql-button href='/paths/187/course_templates/568' icon='arrow_forward' tonal> Start course </ql-button> </div> </div> </ql-card> </div> </div> </div> </main> <footer class='application-footer'> <a target="_blank" href="/privacy_policy">Privacy</a> <a href="/terms_of_service">Terms</a> <a class='glue-cookie-notification-bar-control'>Manage cookies</a> <div class='powered-by'> <span aria-hidden>Powered by</span> <img alt="Powered by Qwiklabs" src="https://cdn.qwiklabs.com/assets/qwiklabs_logo_grayscale-253167e4722753ac463e99dbda9945e0db4a7f88.svg" /> </div> </footer> </ql-drawer-content> </ql-drawer-container> <span class='hidden' id='flash-sibling-before'></span> <ql-snackbar></ql-snackbar> <script data-glue-cookie-notification-bar-category='2A' src='https://www.gstatic.com/glue/cookienotificationbar/cookienotificationbar.min.js'></script> <script> document.addEventListener("turbo:load", function () { ql.initMaterialInputs(); initChosen(); initTabs(); ql.list.init(); ql.favoriting.init(); ql.header.myAccount.init(); initTooltips(); ql.autocomplete.init(); ql.modals.init(); ql.toggleButtons.init(); ql.analytics.init(); Turbo.session.drive = false; ql.searchHeader.init(); (new ql.searchAutocomplete()).init({forHeader: true, topSuggestions: [{"label":"machine learning"},{"label":"cloud architecture"},{"label":"generative ai"},{"label":"data analyst"},{"label":"security fundamentals"}]}); ql.messages.init(); ql.jumpContent.init(); }, {once: true}); </script> </body> </html>