Modal title

Modal body text goes here.

The Fortinet Certified Trainer (FCT) Assessment is a half-day examination led by FCT proctors and the ATC Team.

To apply, you must meet the following requirements

  • Are you sponsored by a Fortinet ATC?
  • Do you have strong knowledge and experience in network and application security?
  • Do you have strong knowledge and experience in cybersecurity?
  • Do you have solid and proven training delivery skills?
  • Do you have at least 5 years of trainer experience in IT security?

If you meet all of these requirements you can be a Fortinet Certified Trainer!

If you want to attend this FCT assessment session, please contact atc@fortinet.com to register.

*Proof of experience must be submitted along with FCT Assessment request mail

Skip to main content
NSE Institute
  • Library
  • Schedule
  • Certifications
  • ATC
  • Security Academy Program
  • Log in
  • Training
  • Library

FortiEDR

Learn at your own pace or choose a format that suits you best.

Download Course Description
Course Description

In this two-day class, you will learn how to use FortiEDR to protect your endpoints against advanced attacks with real-time orchestrated incident response functionality.

Who Should Attend

IT and security professionals involved in the administration and support of FortiEDR should attend this course.

Agenda
  1. Overview and Technical Positioning
  2. Installation and Architecture
  3. Administration
  4. Best Practices and Deployment
  5. The User Interface in Depth Part 1
  6. The User Interface in Depth Part 2
  7. Events and Alerting
  8. Help Desk Level 1 Triage
  9. Communication Control
  10. Next-Generation Antivirus
  11. Threat Hunting
  12. RESTful API
  13. Multi-Tenancy
  14. Fortinet Cloud Services
  15. Advanced Troubleshooting
  16. Endpoint Security 101
  17. PowerShell and CScript
  18. Alert Analysis 401
Objectives

After completing this course, you should be able to:

  • Explain the FortiEDR approach and how it works
  • Identify the communicating components and how they are configured
  • Schedule, organize, and tune a new deployment
  • Carry out basic troubleshooting steps, including: verifying that FortiEDR is installed and actively blocking malware, identifying whether FortiEDR has blocked a process or connection, finding logs, and contacting FortiEDR Support
  • Perform important administrative tasks, including: managing console users, updating collectors, deleting personal data for GDPR compliance, and viewing system events
  • Complete basic tasks in of each area of the management console: the Dashboard, the Event Viewer, the Forensics tab, the Threat Hunting module, Communication Control, Security Policies, Playbooks, Inventory, and the Administration tab
  • Manage security events and their status
  • Block communication from applications that are risky or unwanted, but not inherently malicious
  • Define next-generation antivirus, its role in FortiEDR, and where it falls in the order of operations
  • Find and remove malicious executables from all the devices in your environment
  • Use RESTful API to manage your FortiEDR environment
  • Administer a multi-tenant environment
  • Recognize what Fortinet Cloud Service is and how it works
  • Troubleshoot collector upgrades and performance issues
  • Obtain collector logs and memory dumps
  • Have a basic understanding of the history of malware, how it exploits trust, and the persistence techniques used in malware today
  • Triage PowerShell and CScript events, verify their destinations, and retrieve memory
  • Prioritize, investigate, and analyze security events
  • Remediate malicious events and create exceptions to allow safe processes
System Requirements

If you take an online version of this class, you must have a computer with:

  • A high-speed Internet connection
  • An up-to-date web browser
  • A PDF viewer
  • Speakers / headphones
  • One of the following:
    • HTML5 support
    • An up-to-date Java Runtime Environment (JRE) with Java plugin enabled in your web browser

You should use a wired Ethernet connection, not a WiFi connection. Firewalls, including Windows Firewall or FortiClient, must allow connections to the online labs.

Enroll Now

Access the self-paced training

Find a Class

Browse our schedule for upcoming classes

Product Versions

  • FortiEDR 4.2

Formats
  • Instructor-led classroom
  • Instructor-led online
  • Self-paced online
Part Number (SKU)
  • FT-EDR: Instructor-led course
  • FT-EDR-LAB: Lab access within self-paced course
Contact your local Fortinet Reseller for purchase and pricing information

Prerequisites
  • Basic understanding of cybersecurity concepts
Certification

This course prepares you for the FortiEDR Specialist exam.

NSE 5 Network Security Analyst certification requires passing at least two NSE 5 Specialist exams.

Learn more about the NSE 5 Certification.

  • Library
  • Schedule
You are not logged in. (Log in)
  • Library
  • Schedule
  • Certifications
  • ATC
  • Security Academy Program
Data retention summary