In this course, you will learn about FortiSIEM initial configurations, architecture, and the discovery of devices on the network. You will also learn how to collect performance information and aggregate it with syslog data to enrich the overall view of the health of your environment, how to use the configuration database to greatly facilitate compliance audits, and how to integrate FortiSIEM into your network awareness infrastructure.
Agenda:
1. Introduction
2. SIEM and PAM Concepts
3. Discovery and FortiSIEM Agents
4. FortiSIEM Analytics
5. CMDB Lookups and Filters
6. Group By and Data Aggregations
7. Rules and MITRE ATT&CK
8. Incidents and Notification Policies
9. Reports and Dashboards
10. Maintaining and Tuning
11. Troubleshooting
This kit helps prepare for the NSE 5 FortiSIEM 6.3 certification exam and includes:
• FortiSIEM 6.3 Study Guide
• FortiSIEM 6.3 Lab Guide (It does not include access to the lab environment. Lab time must be purchased separately.)
Click here to go to the exam voucher purchase page.
For the status of FCP - Security Operations exams at Pearson VUE see: https://training.fortinet.com/local/staticpage/view.php?page=fcp_security_operations