Course Overview
In this class, professionals will learn how to use FortiEDR to guard your endpoints against advanced attacks with real-time orchestrated incident response functionality. One will also explore FortiEDR features & how they protect your endpoints automatically in real time.
Prerequisites
A basic understanding of cybersecurity concepts
Audience Profile
IT & security professionals involved in the administration & support of FortiEDR should attend this course.
Learning Objectives
After accomplishment of this course, you should be able to:
- Describe the FortiEDR approach and how it works
- Recognize the communicating components & how they are configured
- Conduct important administrative tasks, including: handling console users, updating collectors, removing personal data for GDPR compliance, deploy multi-tenant environment & viewing system events
- Carry out fundamental troubleshooting steps, including: affirming that FortiEDR is installed and actively blocking malware, recognizing whether FortiEDR has blocked a process or connection, finding logs, & contacting FortiEDR Support
- Perform important administrative tasks, including: handling aging console users, updating collectors, removing personal data for GDPR compliance, & viewing system events
- Identify what Fortinet Cloud Service is and how it works
- Clear basic tasks in of each area of the management console: the Event Viewer, the Dashboard, the Forensics tab, Communication Control, the Threat Hunting module, Security Policies, Playbooks, Inventory, and the Administration tab
- Handle security events and their status
- Block communication from applications that are unwanted or risky , but not inherently malicious
- Find & remove malicious executables from all the devices in your environment
- Comprehend how FortiEDR integrates with Fortinet Security Fabric, and how FortiXDR works
- Utilize RESTful API to manage your FortiEDR environment
- Prioritize, investigate, & analyze security events
- Remediate malicious events & create exceptions to allow safe processes
- Carry out fundamental troubleshooting tasks on all FortiEDR components
- Obtain collector logs and memory dumps
Content Outline
Product Overview and Installation
Administration
Security Policies
Fortinet Cloud Security and Playbooks
Communication Control
Events and Alerting
Threat Hunting and Forensics
RESTful API
Troubleshooting
Certification
This course equips you for the FortiEDR Specialist exam.
NSE 5 Network Security Analyst certification needs passing at least two NSE 5 Specialist exams.
FAQs
A: To attend the training session you should have an operational Desktops or Laptops with required specification along with good internet connection to access the labs.
A: We would always recommend you to attend the live session to practice & clarify the doubts instantly and get more value from your investment. However, due to some contingency if you have to skip the class Radiant Techlearning would help you with the recorded session of that particular day. However, those recorded sessions are not meant only for personal consumption and NOT for distribution or any commercial use.
A: Radiant Techlearning has a data center containing the Virtual Training environment for the purpose of participant’s hand-on-practice.
Participants can easily access these labs over Cloud with the help of remote desktop connection.
Radiant virtual labs provide you the flexibility to learn from anywhere in the world and in any time zone.
A: The learners will be enthralled as we engage them in real world and industry Oriented projects during the training program. These projects will improve your skills and knowledge and you will gain better experience. These real time projects, they will help you a lot in your future tasks and assignments.