Status:
Available
The Fortinet NSE 7 - Security Operations 7.6 Architect exam evaluates your knowledge and expertise in designing, deploying, operating, and managing a Fortinet SOC solution using FortiSIEM and FortiSOAR to detect, investigate, and respond to cyber threats.
This exam tests your applied knowledge of FortiSIEM and FortiSOAR configuration and operation, and includes operational scenarios, incident analysis, integration, and troubleshooting scenarios.
Once you pass the exam, you will receive the following exam badge:

Audience
The Fortinet NSE 7 -Security Operations 7.6 Architect exam is intended for network and security professionals responsible for architectural design, deployment, operation, and monitoring of a Fortinet SOC solution with FortiSIEM and FortiSOAR.
Exam Details
| Time allowed |
75 minutes |
| Exam questions |
35-40 questions |
| Scoring |
Pass or fail. A score report is available from your Pearson VUE account. |
| Language |
English |
| Product version |
FortiSOAR 7.6., FortiSIEM 7.3 |
Exam Topics
Successful candidates have applied knowledge and skills in the following areas and tasks:
- SOC Concepts and Frameworks
- Analyze security incidents and identify adversary behaviors
- Explain Fortinet SOC enterprise architecture
- Identify attack vectors
- Detection Capabilities
- Configure FortiSIEM incident rules
- Build queries to search event logs on FortiSIEM
- Analyze FortiSIEM incidents
- SOAR Incident Handling and Threat Hunting
- Analyze threat hunting processes and data
- Manage FortiSOAR incidents
- Create queues and shifts for workload management
- Use war rooms for incident handling
- SOAR Playbook Development
- Configure FortiSOAR playbooks
- Configure FortiSOAR connectors
- Manipulate data using Jinja filters
- Debug and troubleshoot FortiSOAR playbooks
Training Resources
The following resources are recommended for attaining the knowledge and skills that are covered on the exam. The recommended training is available as a foundation for exam preparation. In addition to training, you are strongly encouraged to have hands-on experience with the exam topics and objectives.
Experience
- 1 year of experience with network security
- 6 months of experience working in SOC