This one-day course teaches system administrators and security operations personnel how to use the VMware Carbon Black EDR product. The course provides an in-depth understanding of Carbon Black EDR's components and capabilities through hands-on labs. By the end of the course, students will be able to configure and maintain the Carbon Black EDR server according to organizational requirements, perform searches across process and binary data, implement threat intelligence feeds, and use investigations and response capabilities.