FortiAnalyzer Analyst

Course Overview

In this course, one will learn the fundamentals of using FortiAnalyzer for centralized logging. One will also learn how to identify current and potential threats through log analysis. Finally, one will examine the management of events, incidents, reports, & task automation with playbooks. These skills will deliver you with a firm foundation for becoming a SOC analyst in an environment utilizing Fortinet products.

 

Prerequisites

Familiarity with every topic presented in the NSE 4 FortiGate Security & NSE 4 FortiGate Infrastructure courses

Understanding of SQL SELECT syntax is helpful, but not needed

Audience Profile

Anyone who is accountable for Fortinet Security Fabric analytics & automating tasks to detect and respond to cyberattacks utilizing FortiAnalyzer should attend this course.

Learning Objectives

After accomplishment of this course, you should be able to:

  • Comprehend basic concepts and features
  • Explain the purpose of collecting and securing logs
  • View & search for logs in Log View and FortiView
  • Understand FortiSoC features
  • Manage events and event handlers
  • Configure and analyze incidents
  • Perform threat hunting tasks
  • Understand outbreak alerts
  • Describe how reports function within ADOMs
  • Customize and create charts and datasets
  • Customize and run reports
  • Configure external storage for reports
  • Attach reports to incidents
  • Troubleshoot reports
  • Understand playbook concepts
  • Create and monitor playbooks

Content Outline

Introduction and Initial Configuration

Logging

FortiSoC—Events and Incidents

Reports

FortiSoC—Playbooks

Certification

This course equips you for the NSE 5 FortiAnalyzer Analyst certification exam.

 

FAQs

A: To attend the training session you should have an operational Desktops or Laptops with required specification along with good internet connection to access the labs. 

 

A: We would always recommend you to attend the live session to practice & clarify the doubts instantly and get more value from your investment. However, due to some contingency if you have to skip the class Radiant Techlearning would help you with the recorded session of that particular day. However, those recorded sessions are not meant only for personal consumption and NOT for distribution or any commercial use.

 

A: Radiant Techlearning has a data center containing the Virtual Training environment for the purpose of participant’s hand-on-practice. 

Participants can easily access these labs over Cloud with the help of remote desktop connection. 

Radiant virtual labs provide you the flexibility to learn from anywhere in the world and in any time zone. 

 

A: The learners will be enthralled as we engage them in real world and industry Oriented projects during the training program. These projects will improve your skills and knowledge and you will gain better experience. These real time projects, they will help you a lot in your future tasks and assignments.

 

Send a Message.


  • Enroll