Advanced Anomaly Detection with Data Protection Advisor

• 1

  Overview
• 2

  Audience
• 3

  Revisions
• 4

  We value your feedback

• 1

  Dell data protection and cyber resilience
• 2

  Data Protection Advisor

• 1

  Centralized reporting with Data Protection Advisor
• 2

  Importance of Data Protection Advisor
• 3

  The stakeholders
• 4

  Data Protection Advisor infrastructure components
• 5

  Monitoring of data protection elements and objects
• 6

  Smart groups
• 7

  Data collection retention
• 8

  The elements of running a report

• 1

  Anomaly reporting with Data Protection Advisor analysis engine
• 2

  Analysis Engine workflow
• 3

  Analysis Policy and rules
• 4

  Recommended cyber threat anomaly detection rules
• 5

  Example of Analysis Policy - Detecting higher rate of change in backups
• 6

  Recommendations for analysis engine policy
• 7

  Rules customization

• 1

  Working with external data sources
• 2

  Custom template end state
• 3

  External data source
• 4

  Adding the data source
• 5

  Define the Operator
• 6

  Order and report

• 1

  Data Protection Advisor integration with Splunk for cyber threat anomaly detection
• 2

  Integrate and configure Data Protection Advisor with Splunk
• 3

  Configure a Splunk dashboard for the events
• 4

  Configure a Splunk alert

• 1

  Summary

• 1

  Dell Technologies documentation
• 2

  Other documentation