Download Our Latest Course Catalog | Download Now

[woo_multi_currency_layout10]
Contact Us

Advanced Analytics

A comprehensive course on managing FortiSIEM in complex environments, with advanced integrations and automation.

Send Enquiry to Sales Team
Request a Quote
Advanced Analytics

Overview

Overview
This course provides in-depth training on managing FortiSIEM in a multi-tenant environment. It covers everything from rule architecture and baseline behavior to advanced analytics with nested queries and lookup tables. Additionally, it includes integration with FortiSOAR for effective incident response and remediation. By the end of the course, participants will be well-equipped to design, deploy, and manage complex FortiSIEM and FortiSOAR setups.
Prerequisites

To get the most out of this course, attendees should have completed the following courses or possess equivalent experience:

  • FCP – FortiGate Security

  • FCP – FortiGate Infrastructure

  • FCP – FortiSIEM

It is also recommended to have a working knowledge of:

  • Python programming

  • Jinja2 templating language

  • Linux systems

  • Security Orchestration, Automation, and Response (SOAR) technologies

Scope

This course dives deep into:

  • Multi-tenancy architecture in FortiSIEM

  • Collector and connector operations

  • Security rule creation and logic

  • Baseline and UEBA analysis

  • Advanced analytics using nested queries and lookup tables

  • Integration and automation with FortiSOAR

It also explores real-world deployment strategies for enterprise and MSSP environments.

Target Audience

This course is tailored for:

  • Security professionals managing FortiSIEM and FortiSOAR

  • Network administrators in enterprise and service provider environments

  • SOC analysts and engineers

  • System integrators and technical support staff

Anyone responsible for security event management and automated incident response across multiple customer networks will benefit from this training.

Best Practices

  • Use collectors strategically in hybrid environments to optimize performance

  • Regularly update and fine-tune rules for evolving threats

  • Monitor EPS usage and cluster performance to ensure scalability

  • Automate repetitive tasks using FortiSOAR scripts

  • Utilize lookup tables and nested queries for enhanced correlation and analytics

  • Maintain clear documentation of configurations and rules

Certification

Upon successful completion of this course, participants will be prepared to take a related Fortinet certification exam (depending on the current Fortinet certification path). This training helps fulfill the knowledge requirements for advanced FortiSIEM certifications and can contribute to professional development goals in cybersecurity operations.

FAQs

Q: Is this course available online?
A: Yes, it is available in both online and in-person formats.

Q: Do I need a Fortinet device to practice?
A: No, the course includes access to online labs with pre-configured environments.

Q: What if I’m new to FortiSIEM?
A: It’s recommended to complete the basic FortiSIEM course before taking this one.

Q: Will I receive a certificate?
A: Yes, a certificate of completion is provided at the end of the course.

Course Outline

  1. Introduction to Multi-Tenancy
  2. Defining FortiSIEM Collectors and FortiSOAR Connectors
  3. Operating Collectors
  4. Windows and Linux Agents
  5. Rules
  6. Single Subpattern Security Rules
  7. Multiple Subpattern Rules
  8. Baselines
  9. Baseline Rules
  10. FortiSIEM UEBA
  11. Nested Queries and Lookup Tables
  12. Clear Conditions
  13. Remediation
Note : A representative from Datacipher will contact you with further details
Payment Methods

At DataCipher, we offer a variety of payment options for our Fortinet courses. Here are the methods available:

Purchase Order (PO) – If your organization prefers using a purchase order, begin the registration process by clicking the Register button. At the conclusion of the registration form, choose the option “My company will pay for it, please send an invoice with the payment details.” Our training team will then provide an official quote and any necessary additional information that your accounts department might need to issue the PO.

Bank Transfer – DataCipher maintains bank accounts in both the US and Europe, accommodating all standard bank transfer methods such as IBAN/BIC, Swift, ACH, or wire transfer. To make a payment via bank transfer, simply use the Register button to sign up for your selected course.

Credit Card Payments – We accept payments from all major credit cards, including Mastercard, VISA, American Express, Discover & Diners, and Cartes Bancaires. Payments can be made directly through the registration link or by requesting an invoice that includes a web link for online payment. All transactions are secure, and DataCipher does not store any credit card information.

These options are designed to make the registration process as smooth and flexible as possible for all participants.

Status

Guaranteed to Run – DataCipher is committed to running this class unless unforeseen events such as an instructor’s accident or illness occur.

Guaranteed on Next Booking – The course will proceed once an additional student registers.

Scheduled Class – We have scheduled this course and rarely cancel due to low enrollment. We offer a “Cancel No More Than Once” guarantee, ensuring that if a class is canceled due to insufficient enrollment, the next session will run regardless of the number of attendees.

Sold Out – If the class is fully booked, please use our contact form to join the waiting list or to inquire about additional sessions. We’re here to accommodate your training needs and keep you informed of new opportunities.

Half and Full-Day Training

At DataCipher, we offer our training courses in both traditional full-day and convenient half-day formats. Our half-day classes are specifically designed for IT professionals who cannot be away from their workplaces for consecutive full days. This flexible schedule allows participants to dedicate a few hours to learning and then return to their regular work responsibilities.

The curriculum for both the full-day and half-day formats is identical. The primary difference is that the half-day classes spread the coursework over a more extended period, providing a balanced approach to professional education. DataCipher has been successfully running these half-day training sessions for several years, receiving consistently positive feedback from our customers. They appreciate the flexibility and report that the extended timeframe facilitates a deeper understanding of the material, as it gives them more time to absorb and reflect on the information learned.

Click below to download the course materials and any additional resources.

Download Details

REQUEST CUSTOM DELIVERY

REQUEST a Quote

Become An Expert By Practice – Get Your Hands On Labs

Don’t let your tech outpace the skills of your people
Get in touch today
World-Class Training Expertise
Boasting decades of experience in delivering top-tier IT and professional development training, tailored to the latest industry trends.
Customized Learning Journeys
Offering personalized training paths to meet the specific needs of individuals and organizations.
Innovative Learning Platforms
Utilizing cutting-edge technology to provide engaging and effective online and in-person training experiences.
Global Network of Industry Experts
Our instructors are seasoned professionals with real-world experience, ensuring practical and relevant learning.
Extensive Course Catalog
Covering a wide array of topics, from cybersecurity to cloud computing, ensuring comprehensive skill development.
Flexible Training Delivery Modes
Providing various training formats, including live virtual classrooms, on-site training, and self-paced online courses.
Commitment to Excellence
Continuously updating courses to reflect the latest industry standards and best practices.
Strong Industry Partnerships
Collaborating with leading technology vendors and institutions for accredited and up-to-date course content.
Proven Training Track Record
Years of successful training delivery, reflected in high satisfaction rates and positive client testimonials.
Future-Ready Skills Development
Focused on equipping learners with skills that are crucial for the ever-evolving tech landscape.

TRUSTED BY TOP COMPANIES LIKE IBM, DELOITTE, ERICSSON, AND MORE.
DISCOVER OUR CUSTOMER PORTFOLIO.

Dedicated to excellence, we cultivate strong partnerships with worldwide technology innovators.

Testimonials

What Our Clients Say

Instructor is good knowledgeable in his domain, which was seen in his entire session which we went through, we have asked the query multiple time but he did not hesitate to answer as well as fruitfully answer it well.Content part was also fine.
Manish KumarNTT
The complete session was brainstorming & well planned. Learned a lot; hope to imply the wonderful training insights to working. The course was diverse yet meaningful in every aspect. Would like to enroll myself in advance training as well, if slots are available.
Jyoti KhatiAccenture
Instructor was very good, has very good knowledge in his area, he covered all the learning point and answered all the questions asked by me and team.
Mohit GuptaNTT
Thank you very much for the training sessions this week. Really informative, and please keep the good work. You’ve been one of the best trainer so far, I’m dead serious.
Selven MookenCeredian
Instructor at Dataciphers was a fantastic teacher. He covered all the topics and explained them very well. All questions I had, he had an answer for and not only a verbal answer but he showed me how to do certain things when the question required a visual answer. I highly recommend taking this class with him as the instructor. If I take a nother class with Datacipher really hoping to get him as the instructor.
Becker & PoliakoffFelipe Gonzalez
The instructor, solve the questions, and has a pretty good knowledge related this course
Fernando HenryNTT
Your training session was very informative, and I appreciate the effort you’ve put into this one week training sessions. You did a good job of explaining complex concepts in a way that was easy to understand mainly for SSL certificates. Thank you as well for keeping the lab online.
Selven MookenCeredian
Thanks a lot for such a informative sessions on Palo alto. I really appreciate your teaching approach. You taught each and every chapter in detail and solved our queries. I would love to join your class again in future.
Atharva JamkarAccenture
The course was presented in an enthusiastic way, as your sprit was always high since morning to evening day 1 to day 5. You clarified the contents from very basic to high level, which gave me better understanding of topics. Great presentation style with lots of opportunities to ask questions and talk about real life examples which all made for a really enjoyable and informative course. This has more than met my expectations. Thank you for a great course. I took lots of things that I can quickly and easily apply, as I was new to the Palo alto, but now I can perform well.
Samreen AkhtarAccenture
Instructor personally repeated multiple concepts to get the clear idea about the workflow
Shreya JattiPAN - EPT
The instructor explained all the concepts in depth. Very engage throught all 4 days of the session. He was more than happy to provide any answers to our doubts even if it is outside the course/scope of this training.
Asha ChaudharyDepartment of The Premier and Cabinet South Australia

Transform your team with award-winning IT training, delivered by top-rated trainers, both online and in-person.

Facebook-f Twitter Linkedin Youtube Instagram

Explore

Locations

Copyright © 2025 Datacipher Education Services Pvt Ltd, All Rights Reserved.

You’re all set!

Thanks for registering. Our training team will be in touch soon to confirm your class schedule and help you get started.

Back to Course