FortiSIEM Analyst

FortiSIEM AnalystFORT-SIEMFOFortinetFO-FORT-SIEM7.4After completing this course, you should be able to: <ul> <li>Describe how FortiSIEM solves common cybersecurity challenges</li><li>Describe the main components and the unique database architecture on FortiSIEM</li><li>Perform real-time and historical searches</li><li>Define structured search operators and search conditions</li><li>Reference the CMDB data in structured searches</li><li>Configure display fields and columns</li><li>Build queries from search results and events</li><li>Build nested queries and lookup tables</li><li>Build rule subpatterns and conditions</li><li>Manage and tune incidents</li><li>Resolve an incident</li><li>Create time-based and pattern-based clear conditions</li><li>Configure automation policies</li><li>Create rules using baselines</li><li>Analyze anomalies against baselines</li><li>Describe the threat hunting workflow</li><li>Analyze threat hunting dashboards</li><li>Describe FortiSIEM ML modes and algorithms</li><li>Describe how to train an ML model perform an analysis using a ML model</li><li>Describe the benefits of deploying FortiSIEM UEBA</li><li>Configure tags, rules, and incidents using UEBA data</li><li>Describe how ZTNA tags affect the FortiSIEM incident and remediation process</li><li>Configure a ZTNA tag using FortiSIEM to remediate incidents</li><li>Generate and export a report</li><li>Create a custom dashboard</li></ul>You must have an understanding of the topics covered in the following courses, or have equivalent experience: <ul> <li>FortiGate Operator</li><li>!</li></ul>Security professionals responsible for the detection, analysis, and remediation of security incidents using FortiSIEM should attend this course.<ul> <li>1. Introduction to FortiSIEM</li><li>2. Analytics</li><li>3. Nested Queries and Lookup Tables</li><li>4. Rules and Subpatterns</li><li>5. Incidents</li><li>6. Clear Conditions and Remediation</li><li>7. Threat Hunting</li><li>8. Performance Metrics and Baselines</li><li>9. Machine Learning</li><li>10. User and Entity Behavior Analytics</li><li>11. FortiSIEM ZTNA</li><li>12. Reports and Dashboards</li></ul>After completing this course, you should be able to: - Describe how FortiSIEM solves common cybersecurity challenges - Describe the main components and the unique database architecture on FortiSIEM - Perform real-time and historical searches - Define structured search operators and search conditions - Reference the CMDB data in structured searches - Configure display fields and columns - Build queries from search results and events - Build nested queries and lookup tables - Build rule subpatterns and conditions - Manage and tune incidents - Resolve an incident - Create time-based and pattern-based clear conditions - Configure automation policies - Create rules using baselines - Analyze anomalies against baselines - Describe the threat hunting workflow - Analyze threat hunting dashboards - Describe FortiSIEM ML modes and algorithms - Describe how to train an ML model perform an analysis using a ML model - Describe the benefits of deploying FortiSIEM UEBA - Configure tags, rules, and incidents using UEBA data - Describe how ZTNA tags affect the FortiSIEM incident and remediation process - Configure a ZTNA tag using FortiSIEM to remediate incidents - Generate and export a report - Create a custom dashboardYou must have an understanding of the topics covered in the following courses, or have equivalent experience: - FortiGate Operator - (!)Security professionals responsible for the detection, analysis, and remediation of security incidents using FortiSIEM should attend this course.- 1. Introduction to FortiSIEM - 2. Analytics - 3. Nested Queries and Lookup Tables - 4. Rules and Subpatterns - 5. Incidents - 6. Clear Conditions and Remediation - 7. Threat Hunting - 8. Performance Metrics and Baselines - 9. Machine Learning - 10. User and Entity Behavior Analytics - 11. FortiSIEM ZTNA - 12. Reports and Dashboards3 Tage2220.002900.004000.00