In this course, you will learn how to use FortiSIEM in a multi-tenant environment. You will learn about rules and their architecture, how incidents are generated, how baseline calculations are performed, the different methods of remediation available, and how the MITRE ATT&CK framework integrates with FortiSIEM. You will also learn how to integrate FortiSOAR with FortiSIEM.

Agenda:
1. Introduction to Multi-tenancy
2. Defining Collectors and Agents
3. Operating Collectors
4. Windows and Linux Agents
5. Rules
6. Single Subpattern Security Rule
7. Multiple Subpattern Rules
8. Introduction to Baseline
9. Baseline
10. UEBA
11. MITRE ATT&CK
12. Clear Conditions
13. Remediation

This kit helps prepare for the NSE 7 Advanced Analytics 6.3 certification exam and includes:
• Advanced Analytics 6.3 Study Guide
• Advanced Analytics 6.3 Lab Guide (It does not include access to the lab environment. Lab time must be purchased separately.)

Click here to go to the exam voucher purchase page.

For the status of FCSS - Security Operations exams at Pearson VUE see: https://training.fortinet.com/local/staticpage/view.php?page=fcss_security_operations