Getting Started with Security Validation

A quick overview of first steps after you've purchased Security Validation can be found in Security Validation Onboarding. See the following topics for getting started with Security Validation.

Support Access

To access cases / tickets that you've submitted to Support, start on our support Support page. 

General

To be successful, we recommend everyone review the following core concepts and resources:

• Accessing Resources
• Security Validation Use Cases
• Important Security Validation Terminology
• Security Content Overview
• Understanding Pass/Fail Rules

Installation and Deployment

If you are part of the team who is deploying and setting up Security Validation, use the following resources:

• Security Validation Quick-Start Workbook
• System Requirements
• Validation Platform Credentials
• Installation guides
  • Director
  • Linux Actor
  • Windows Actor
  • Mac Actor
• Network Settings
• Proxy Settings

Security Patches

If you are using one of our appliances, there may be security patches released with each release. You can find more information about those here:

• Applying Security Updates to your Security Validation Appliances
• Security Patch Downloads

MA-SV (SaaS)

If you are using an MA-SV (SaaS) instance, we recommend you verify you have access to the following pages. If you do not, contact support. 

• Actor and Protected Theater Downloads

Integrations

After you have completed initial configuration of your Director and Actor, you'll need to setup your Integrations.

• MSI Integrations
  

  This document covers the the MSI method of creating an integration. This method is the recommended approach for configuring new integrations in Security Validation.

  • Integrations Overview
  • Configure Mandiant SecOps Integrations (MSI)
• Legacy Integrations
  

  This document applies to Classic/Legacy Integrations. You may continue to use these integration configurations. While no active development is happening for these integrations, we continue to provide Classic/Legacy Integrations in the product. You do not have to move to MSI Integrations. If your support engineer or TSC recommends or you choose to move to MSI Integrations, you can take advantage of the latest features and functionality. For more information, see the MSI Integration documentation in the Integrations Overview.

  • Integrations Overview
  • Configuring & Managing Integrations

Establishing Your Baseline

Once your Integrations are in place, you'll need to start running tests to tune the system and establish your Baseline.

• Operational Readiness
• Security Content Overview
• Running Actions
• Event Filter Rules - This helps reduce the noise from your integrations by hiding events
• Managing Security Technologies

Notes

• The Validation Platform returns to the login screen after reaching the user timeout threshold. By default, this is 30 minutes of inactivity but is configurable.
• Browser plugins, such as ad blockers, may interfere with the Director's functionality. If you have issues with functionality, disable your plugins before contacting Support.