This workshop introduces a framework for administration of the Email Security – Server. The course includes checklists, case studies, lab challenges and guidance for transitioning difficult cases to the Trellix Support team.

The course also introduces the key components and detection engines, including detection of malicious files and URLs, email alerts and quarantine used for containment.

This course is designed primarily for administrators or analysts who will derive meaningful, actionable information from Trellix alerts to assess and triage threats to their environment.

This hands-on workshop will give attendees experience administering the appliance, diagnosing common issues, and interpreting detection.

• Properly deploy Trellix Email Security – Server in the network
• Perform initial configuration of the appliance based on system requirements and user preferences
• Administer the appliance
• Recognize current malware threats and trends
• Understand the threat detection and prevention capabilities of Trellix Email Security – Server
• Locate and use critical information in a Trellix alert to assess a potential threat
• Identify Indicators of Compromise (IOCs) in a Trellix alert and use them to identify compromised hosts
• Troubleshoot common issues with the Email Security – Server and use logs to determine status
• Escalate issues to Trellix Support for further assistance

• Appliance Administration
• Email Threats
• Email Security – Server Detection Features
• Initial Alerts
• MVX Alerts
• Diagnostics

This course is intended for Security professionals, incident responders, and email administrators responsible for the setup and management of Email Security – Server and who use Email Security – Server to detect, investigate, and prevent cyber threats.

A working understanding of networking, email security and email support.