FortiSIEM Analyst is a Fortinet training course designed for security analysts and SOC operators who use FortiSIEM as their SIEM platform. Students learn to navigate the FortiSIEM interface, query and investigate security events, configure correlation rules and real-time monitors, manage incidents, and generate compliance and operations reports to meet organizational requirements.
What You Will Learn
- Search and filter security events using FortiSIEM’s query interface and structured queries
- Use real-time dashboards and analytics to monitor security posture and detect anomalies
- Build and tune correlation rules to generate actionable incidents from raw events
- Manage the FortiSIEM incident lifecycle from detection through investigation and closure
- Generate compliance reports mapped to frameworks including PCI DSS, HIPAA, and ISO 27001
Who Should Attend
SOC analysts and security operations teams responsible for threat detection, investigation, and compliance reporting using FortiSIEM.
Prerequisites
Basic network security knowledge and familiarity with SIEM concepts. Understanding of FortiGate logs is beneficial.
