FortiSOAR is a holistic Security Orchestration, Automation and Response (SOAR) workbench, designed for SOC teams to efficiently respond to the ever-increasing influx of alerts, repetitive manual processes, and shortage of resources. It pulls together all of organization's tools, helps unify operations and reduces alert fatigue, context switching, and the mean time to respond to incidents. FortiSOAR is extremely a flexible product with many important and usefull features, which along with outstanding customer support brings SOC environment to next level. FortiSOAR provides the ability to customize GUI and affect SOC working environment effectively. Less clicks is better! Robastic Integration with 3rd party tools - many API based connectors with example playbooks which can be easily adopted for company needs. Customer Support - great attitude, professionality, very customer oriented. Through baby steps you will learn Fortinet FortiSOAR important topics that include but not limited to the following: Part I - FortiSOAR Basics==================Lecture 1: IntroductionLecture 2: InstallationLecture 3: GUI Demystified - part1Lecture 4: GUI Demystified - part2Lecture 5: Foundations and ArchitectureLecture 6: Ingesting FortiSIEM Incidents into FortiSOARLecture 7: Ingesting Microsoft Exchange Office365 messages into FortiSOARLecture 8: Installing and Configuring VirusTotal ConnectorLecture 9: Dashboards, Templates and WidgetsLecture 10: Module TemplatesLecture 11: Searches and FiltersLecture 12: Application EditorPart II - Playbooks=============Lecture 13: Playbooks introduction & Trigger StepsLecture 14: Playbooks Core stepsLecture 15: Playbooks Evaluate stepsLecture 16: Playbooks Execute steps and othersLecture 17: Designing Our First playbook - Reassign AnalystLecture 18: Perform IP Enrichment for Newly Added IOCLecture 19: Create Critical Alert for Bad IOC, Approve, and [Manually] Block on FirewallLecture 20: Create Critical Alert for Bad IOC, Approve, and [Auto] Blocking on FirewallLecture 21: Generalize IOC Lookup/Auto-Block Playbook for Bad IP and URLLecture 22: Perform IP Enrichment from 2 CTIs & Manipulate IBM XForce Results using Code Snippet StepLecture 23: Increasing the Resiliency of IP EnrichmentLecture 24: Automate IOC Extraction From CTI AdvisoriesLecture 25: Playbooks Nesting and Parameters PassingLecture 26: Playbooks Nesting and Parameters Passing - Part2 (Hands-On)Appendix=======Lecture 27: CLI and Troubleshooting Lecture 28: Avoid Playbooks Running Forever ConditionEnroll and gain a new competitive skill that is booming and highly demaded nowadays in the Information Security domain.
