Module 1: Introduction to Symantec Data Loss Prevention

• Symantec Data Loss Prevention overview
• Symantec Data Loss Prevention architecture

Module 2: Navigation and Reporting

• Navigating the user interface
• Reporting and analysis
• Report navigation, preferences, and features
• Report filters
• Report commands
• Incident snapshot
• Incident Data Access
• IT Analytics
• Hands-on labs: Become familiar with navigation and tools in the user interface. Create, filter, summarize, customize, and distribute reports. Create users, roles, and attributes

Module 3: Incident Remediation and Workflow

• Incident remediation and workflow
• Managing users and attributes
• Custom attribute lookup
• User Risk Summary
• Hands-on labs: Remediate incidents and configure a users reporting preferences

Module 4: Policy Management

• Policy overview
• Creating policy groups
• Using policy templates
• Building policies
• Policy development best practices
• Hands-on labs: Use policy templates and policy builder to configure and apply new policies

Module 5: Response Rule Management

• Response rule overview
• Creating Automated Response rules
• Creating Smart Response rules
• Response rule best practices
• Hands-On Labs: Create and use Automated and Smart Response rules

Module 6: Described Content Matching

• DCM detection methods
• Use cases
• Using DCM in policies
• Hands-on labs: Create policies that include DCM and then use those policies to capture incidents

Module 7: Exact Data Matching and Directory Group Matching

• Exact data matching (EDM)
• Directory group matching (DGM)
• Advanced EDM
• Hands-on labs: Create policies that include EDM and DGM, and then use those policies to capture incidents

Module 8: Indexed Document Matching

• Indexed document matching (IDM)
• Using IDM in policies
• Hands-on labs: Create policies that include IDM rules and then use those policies to capture incidents

Module 9: Vector Machine Learning

• Vector Machine Learning (VML)
• Creating a VML profile
• Hands-on labs: Create a VML profile, import document sets, and create a VML policy

Module 10: Network Monitor

• Review of Network Monitor
• Protocols
• Traffic filtering
• Network Monitor best practices
• Hands-On Labs: Apply IP and L7 filters

Module 11: Network Prevent

• Network Prevent overview
• Introduction to Network Prevent (Email)
• Introduction to Network Prevent (Web)
• Hands-On Labs: Configure Network Prevent
• (E-mail) response rules, incorporate them into policies and use the policies to capture incidents

Module 12: Mobile Email Monitor and Mobile Prevent

• Introduction to Mobile Email Monitor
• Installing and configuring Mobile Email Monitor
• Mobile Prevent overview
• Installation and configuration
• VPN configuration
• Policy and response rule configuration
• Reporting and remediation
• Logging and troubleshooting

Module 13: Network Discovery and Network Protect

• Network Discovery and Network Protect overview
• Configuring Discover targets
• Protecting data
• Auto-discovery of servers and shares
• FlexResponse platform
• Running and managing scans
• Reports, remediation, and Data Owner Portal
• Network Discovery and Network Protect best practices
• Hands-on labs: Create and run a file system target using various response rules, including quarantining
• Capturing Endpoint Prevent incidents and viewing them in reports
• Managing DLP Agents
• Endpoint Prevent best practices
• Hands-on labs: Create Agent Groups and Endpoint response rules, monitor and block Endpoint actions, view Endpoint incidents and use the Enforce console to manage DLP Agents

Module 14: Endpoint Discover

• Endpoint Discover overview Creating and running Endpoint Discover targets Using Endpoint Discover reports and reporting features Hands-on labs: Create Endpoint Discover targets, run Endpoint Discover targets, and view Endpoint Discover incidents

Module 15: Enterprise Enablement

• Preparing for risk reduction
• Risk reduction
• DLP Maturity model

Module 16: System Administration

• Server administration
• Language support
• Incident Deleter
• Credential management
• Troubleshooting
• Diagnostic tools
• Troubleshooting scenario
• Getting support
• Hands-on labs: Interpret event reports and traffic reports, configure alerts, and use the Log Collection and Configuration tool

Module 17: Endpoint Prevent

• Endpoint Prevent overview
• Configuring Endpoint Prevent
• Detection capabilities at the Endpoint
• Creating Endpoint response rules

• This course is intended for anyone responsible for configuring, maintaining, and troubleshooting Symantec Data Loss Prevention.
• Additionally, this course is intended for technical users responsible for creating and maintaining Symantec Data Loss Prevention policies and the incident response structure.

Before attending this Data Loss Prevention training course, you must have:

• Working knowledge of Windows server-class operating systems and commands, as well as networking and network security concepts.