Course Overview
In this course, you will learn how to use FortiSOAR to design simple to complex playbooks, examine the role of FortiSOAR in mitigating malicious indicators, and learn how to create interactive dashboards to display relevant information about alerts and incidents. You will also learn how to integrate FortiSOAR with FortiGate, FortiSIEM, and FortiMail.
Course Objectives
- Identify the role of FortiSOAR in a SOC environment
- Plan a FortiSOAR deployment
- Manage incidents and alerts in a SOC environment
- Explore, create, and customize dashboards
- Explore the structure of a template
- Create, customize, and analyze various dashboard widgets
- Create, customize, and publish modules
- Search for records and filter search records
- Analyze field-type options in the field editor
- Build a user prompt from a manual trigger step
- Define variables and dictionaries in Jinja
- Configure step utilities within a playbook step
- Configure various core steps of a playbook
- Configure different modes of data ingestion
- Install/configure connectors and apply to a playbook
- Configure various utility steps
- Configure referenced playbooks
- Configure and use dynamic variables and values
- Use expressions to customize playbook input and outputs
- Use common Jinja filters and functions
- Use filters to extract data from complex data structures
- Build loop functions and conditional statements
Who Should Attend?
This course is intended for cybersecurity professionals responsible for planning, designing, and customizing FortiSOAR deployments, integrating FortiSOAR with FortiGate, FortiSIEM, and FortiMail, and FortiSOAR playbook design and development.
- Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
- Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
- Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
- Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
- Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
- Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.
Agenda
1. Introduction to FortiSOAR
2. Dashboard Templates and Widgets
3. Module Templates and Widgets
4. Application Editor
5. Dynamic Variable and Values
6. Jinja Filters, Functions, and Conditions
7. Introduction to Playbooks
8. Playbook Core Steps
9. Playbook Evaluate Steps
10. Playbook Connectors, Data Ingestion, and Execution Steps