After completing this course, you should be able to:

• Identify various implementation requirements for a multi-tenant FortiSIEM deployment
• Deploy FortiSIEM in a hybrid environment with and without collectors
• Design multi-tenant solutions with FortiSIEM Deploy collectors in a multi-tenant environment
• Manage EPS assignment and restrictions on FortiSIEM
• Manage resource utilization of a multi-tenant FortiSIEM cluster
• Maintain and troubleshoot a collector installation
• Deploy and manage Windows and Linux agents
• Create rules by evaluating security events
• Define actions for a single pattern security rule
• Identify the incident attributes that trigger an incident
• Identify multiple pattern security rules and define conditions and actions for them
• Differentiate between a standard and baseline report
• Create your own baseline profiles
• Examine the MITRE ATT&CK framework integration on FortiSIEM and FortiSOAR
• Deploy FortiSIEM UEBA agents
• Examine UEBA rules, reports, event types, and windows template
• Configure clear conditions on FortiSIEM
• Analyze some out-of-the-box remediation scripts
• Configure various remediation methods on FortiSIEM
• Integrate FortiSOAR with FortiSIEM
• Remediate incidents from FortiSOAR