Modal title

Modal body text goes here.

The Fortinet Certified Trainer (FCT) assessment is a trainer evaluation process in which each candidate has to prove their training delivery skills. The FCT assessment is a two-day assessment that evaluates the FCT candidate’s ability to maintain Fortinet’s quality standards in technical knowledge, skills and instructional abilities.

Who can apply?

The FCT assessment candidate should be a Fortinet employee or a candidate sponsored by an ATC who has submitted proof of reference, along with an online application form. An FCT candidate who wants to apply for an FCT assessment must meet the following knowledge and experience eligibility requirements:

  • Extensive technical knowledge and skills in network security and cybersecurity
  • Five years of relevant experience in network security and cybersecurity
  • Certification in the required NSE training courses
  • Five years of experience in training delivery in IT security
  • Demonstrable training facilitation and delivery skills

If you meet all of these requirements you can apply for the FCT assessment!

Please contact fct@fortinet.com for queries and suggestions.

Skip to main content
Training Institute
  • Library
  • Schedule
  • Certifications
  • ATC
  • Academic Partner Program
  • Fast Track Workshops
  • Log in
  • Training
  • Library

FortiSOAR Design and Development

Download Course Description
Course Description

In this course, you will learn how to use FortiSOAR to design simple to complex playbooks, examine the role of FortiSOAR in mitigating malicious indicators, and learn how to create interactive dashboards to display relevant information about alerts and incidents. You will also learn how to integrate FortiSOAR with FortiGate, FortiSIEM, and FortiMail.

Who Should Attend

This course is intended for cybersecurity professionals responsible for planning, designing, and customizing FortiSOAR deployments, integrating FortiSOAR with FortiGate, FortiSIEM, and FortiMail, and FortiSOAR playbook design and development.

Prerequisites

You must have an understanding of the topics covered in the following courses, or have equivalent experience:

  • NSE 4 FortiGate Security
  • NSE 6 FortiSOAR Administrator

It is recommended that you have an understanding of Python programming and Jinja2 templating language, and familiarity with email security and SIEM technologies is also beneficial.

Agenda
  1. Introduction to FortiSOAR
  2. Dashboard Templates and Widgets
  3. Module Templates and Widgets
  4. Application Editor
  5. Dynamic Variable and Values
  6. Jinja Filters, Functions, and Conditions
  7. Introduction to Playbooks
  8. Playbook Core Steps
  9. Playbook Evaluate Steps
  10. Playbook Connectors, Data Ingestion, and Execution Steps
Objectives

After completing this course, you will be able to:

  • Identify the role of FortiSOAR in a SOC environment
  • Plan a FortiSOAR deployment
  • Manage incidents and alerts in a SOC environment
  • Explore, create, and customize dashboards
  • Explore the structure of a template
  • Create, customize, and analyze dashboard widgets
  • Create, customize, and publish modules
  • Search for records and filter search records
  • Analyze field-type options in the field editor
  • Build a user prompt from a manual trigger step
  • Define variables and dictionaries in Jinja
  • Configure step utilities within a playbook step
  • Configure various core steps of a playbook
  • Configure different modes of data ingestion
  • Install/configure connectors and apply to a playbook
  • Configure various utility steps
  • Configure referenced playbooks
  • Configure and use dynamic variables and values
  • Use expressions to customize playbook input and outputs
  • Use common Jinja filters and functions
  • Use filters to extract data from complex data structures
  • Build loop functions and conditional statements
System Requirements

If you take the online format of this class, you must use a computer that has the following:

  • A high-speed internet connection
  • An up-to-date web browser
  • A PDF viewer
  • Speakers or headphones
  • One of the following:
    • HTML5 support
    • An up-to-date Java Runtime Environment (JRE) with Java Plugin enabled on your web browser

You should use a wired Ethernet connection, not a Wi-Fi connection. Firewalls, including Windows Firewall or FortiClient, must allow connection to the online labs.

Enroll Now

Access the latest self-paced training version
Looking for a previous version?

Click here to find previous versions of self-paced courses.
Purchasing Process

More information on how to purchase instructor-led courses, on-demand labs, exam vouchers, and study material.
Find an Instructor-Led Class

Browse our schedule for upcoming classes delivered by Fortinet.
Product Versions
  • FortiSOAR 7.3.0
  • FortiSIEM 6.6.0
  • FortiGate 7.2.1
  • FortiMail 6.4.3
Course Duration
  • Lecture time (estimated): 10 hours
  • Lab time (estimated): 7 hours
  • Total course duration (estimated): 17 hours / 3 days
Formats
  • Instructor-led (classroom and online)
  • Self-paced online
(ISC)2

  • CPE training hours: 10
  • CPE lab hours: 7
  • CISSP domains: Security Operations

Part Number (SKU)
  • FT-FSR-DEV: Instructor-led course
  • FT-FSR-DEV-LAB: Lab access within self-paced course

See Purchasing Process for more information

Certification

This course does not have a certification exam.

  • Library
  • Schedule
You are not logged in. (Log in)
  • Library
  • Schedule
  • Certifications
  • ATC
  • Academic Partner Program
  • Fast Track Workshops
Data retention summary