Calendário Fortinet
Ementa do curso
FortiSIEM Administrator v7.2
EDU-FTN-SIEM
Categoria:
Fortinet
Anyone who is responsible for day-to-day management of FortiSIEM.
Descrição:
Pré-requisito(s):
A basic understanding of network concepts.
Visão:
In this three-day course, candidates will learn how to use FortiSIEM, and how to integrate FortiSIEM into your network awareness infrastructure.
Candidates will learn about initial configurations, architecture, and the discovery of devices on the network. Candidates will also learn how to collect performance information and aggregate it with syslog data to enrich the overall view of the health of the environment. Additionally, candidates will learn how you can use the configuration database to greatly facilitate compliance audits.
Conteúdo:
After completing these courses, candidates will be able to:
Identify business drivers for using SIEM tools
Describe SIEM and PAM concepts
Describe key features of FortiSIEM
Understand how collectors, workers, and supervisors work together
Configure notifications
Create new users and custom roles
Describe the discovery process
Enable devices for discovery
Understand when to use agents
Perform real-time, historic, and structured searches
Group and aggregate search results
Examine performance metrics
Create custom incident rules
Edit existing, or create new, reports
Configure and customize the dashboards
Export CMDB information