Security Event Management with Log Correlation Engine

Course Description

This hands-on instructor-led course covers the planning, deployment, and operational use of Log Correlation Engine. Participants will learn installation and configuration of Log Correlation Engine (LCE) with its Log Manager, and LCE Clients in addition to event analysis covering botnet detection, malware detection and intrusion detection. Includes certification: Tenable Certified Log Manager (TCLM).


Security professionals that plan to deploy or use the Log Correlation Engine.

Course Outline

  • Installation and configuration of Log Correlation Engine
  • Installation and configuration of a variety of Log Correlation Engine Clients
  • Event analysis including: Botnet detection and analysis, malware detection and analysis, intrusion detection and analysis, and user tracking
View Detailed Outline


Students should possess a basic understanding of TCP/IP networking, operating systems security and common client/server applications.


This course provides security professionals with the necessary information to prepare for the Tenable Certified Log Manager (TCLM) exam.

Training Location and Time

View the Schedule

Classroom: Tenable Network Security Classroom Training provides students with intensive, instructor-led courses taught in Columbia, MD. Classroom training is highly interactive, with hands-on labs allowing students to learn the latest features of Tenable Enterprise products regardless of experience level. Classes are limited to 15 students to ensure the maximum level of interaction. Students conduct vulnerability and compliance scans and implement Unified Security Monitoring using a classroom network that includes common target operating systems, applications and infrastructure devices. The primary focus of instruction is on tasks most commonly encountered by customers on a daily basis including product operation, architecture and troubleshooting.

Virtual: Tenable Network Security Virtual Classroom Training addresses the need for hands-on, instructor-led training without the cost or inconvenience of travel. Virtual Classroom Training is delivered via web conferencing by a certified Tenable instructor and provides students with secure remote access to classroom systems to complete lab activities and tutorials. Course content and labs are identical to classroom training, except instruction is divided into half-day courses delivered over four days between 11 am – 3 pm EST.

Onsite: Tenable Onsite Training (available in U.S. only) allows organizations to have the appropriate Tenable training delivered at their own training facility. Entire teams can be rapidly trained on Nessus or Tenable Enterprise products with a focus on the unique aspects of the organization, network and operational requirements in their environment. As part of the onsite training engagement, Tenable's training staff will work with stakeholders to identify the content that is most appropriate for the customer's audience and their security monitoring and vulnerability scanning procedures. Content, instruction and activities are identical to Tenable Classroom Training (labs, lectures, etc.).

How to Purchase

Please contact a Tenable Network Security sales representative.