This Foundational Workshop commences with an in-depth exploration of the procedures necessary for the successful preparation and deployment of Fortinet’s FortiPAM solution using lecture and hands on labs. Next students will learn the preparation and deployment of Fortinet’s FortiAuthenticator solution, focusing on basics and then to more complicated use cases. Participants will acquire hands-on FortiPAM experience in the creating of Templates, Targets and Secrets. Participants will acquire hands-on FortiAuthenticator experience in creating RADIUS Clients, SAML IdPs and Trusted Endpoint use cases.

With 90% of all data exchanges now starting with an API request, web and API security has never been more important. This hands-on experience will teach students how FortiAppSec automates anomaly and theat detection and investigation through AI and ML-based learning. Students will come away with knowledge on configuration proper protections for application-specific protocols and use cases.

Fundamentally, cybersecurity is the practice of protecting data and managing how users present risk to that data.  In this session users will get an in-depth education on data and user security principles with hands-on implementation of core data security principles through endpoint user risk and data protection operations using FortiDLP.

This workshop will guide participants through the setup of FortiManager and FortiGate, starting from base configurations to a complete SD-WAN deployment. It will also cover essential day-to-day management operations. Utilizing the latest SD-WAN configuration recommendations in version 7.6, the workshop will include deploying BGP on loopback using only native functions such as variables, templates, and blueprints within FortiManager.

In this three-part lab immersion, you will be challenged to configure a variety of Fortinet products based on a set of objectives. Fortinet products in the lab include FortiGate, FortiManager, FortiAnalyzer, FortiWeb, FortiMail, FortiADC, FortiAuthenticator, and FortiSandbox

During the sessions, an FCX Cybersecurity certified instructor is available for questions and to support you while you complete tasks.

Agenda

• Networking
• Operations
• VPN
• Policies
• Authentication
• Management
• Advanced Technologies

NOTE: Parts 1 and 3 will be automatically added to your schedule.

In today's enterprise environment, the ability to quickly identify and respond to real threats at scale is crucial. Fortinet's FortiAnalyzer offers the functionality and capacity to meet the demands of a security operations center (SOC). With its enhanced Fabric capabilities, FortiAnalyzer can globally scale log ingestion rates and disk capacity, supporting complete multi-tenancy.

FortiAnalyzer addresses the need for ingesting third-party syslog data by parsing and normalizing it into its SIEM database, where it performs event handling, alerting, and reporting. This track will teach participants how FortiAnalyzer correlates Fortinet Fabric logs with normalized syslog data using event correlation handlers.

FortiAnalyzer introduces new SOC features aimed at streamlining detection, correlation, investigation, and remediation processes. Participants will learn to leverage the Incident component, enabling them to manually or automatically raise incidents from detected events. Incident management can be initiated from the SOC dashboard, with threat indicator enrichment configured via playbooks. Containment can be propagated through playbook connectors, and threat data can be pushed to FortiManager. FortiGates can then automatically block newly detected threat indicators. The integration and efficiency of these SOC correlations and remediations are particularly valuable when scaled across numerous devices.

This course provides an in-depth exploration of FortiSASE's thin edge and secure edge connectivity use cases, leveraging FortiBranchSASE devices. It also covers the SD-WAN on-ramp and third-party generic IPsec features. Participants will engage in hands-on activities to onboard devices, ensuring that all user traffic is directed to FortiSASE for comprehensive visibility and security inspection.

This hands-on training class empowers network professionals to design, configure, and manage Fortinet switches in both FortiLink and standalone modes, leveraging FortiGate, FortiAuthenticator, and FortiClient ZTNA for robust enterprise networks. Participants will master deployment, optimization, and stacking of Fortinet switches to ensure high availability and scalability in campus environments, utilizing FortiGate for integrated management, FortiAuthenticator for secure identity management, and FortiClient ZTNA for zero-trust access. The course emphasizes practical troubleshooting techniques to maintain network reliability and performance, addressing real-world scenarios. Ideal for IT teams building secure, high-performance campus networks with Fortinet solutions.

Join us for an exclusive session where we unveil the latest advancements in FortiGate hardware updates and the cutting-edge features of FortiOS. Discover how these upgrades empower your network security with enhanced performance, scalability, and innovative functionalities.

This lab will teach students how to configure FortiGate as a Networked Virtual Appliance in GCP Network Connectivity Center supporting a highly-available architecture.  Concepts will include Google Cloud networking, BGP, and IPSec.

This course is designed as a follow-up for attendees who have previously completed the “Introduction to Support and Protect OT Environments” workshop. In this advanced course, students will commence with an air-gapped Operational Technology environment, leveraging the Virtual Wire capabilities of FortiOS. They will gain an understanding of how FortiLink can be utilized and will explore deception techniques through a series of laboratory exercises. These exercises will facilitate the integration of Information Technology and OT, including the provision of remote access, while ensuring the security of the environment. Additionally, students will deepen their knowledge and understanding of Virtual patching.

Learn the details of hacking in this Capture the Flag (CTF) session.  In this hands-on session participants will tackle real-world cybersecurity challenges, solving puzzles and breaking into systems to capture hidden pieces of data such as passwords, network details and hidden files.
Through guided exercises, you’ll explore key concepts like network security, vulnerabilities, and reverse hashing. Learn to think like a hacker using tools such as Kali Linux and Metasploit.  FortiEDR and FortiAnalyzer will be used view the step involved in hacking as well as how the products work together to prevent such activity on a network.

Fundamentally, cybersecurity is the practice of protecting data and managing how users present risk to that data.  In this session users will get an in-depth education on data and user security principles with hands-on implementation of core data security principles through endpoint user risk and data protection operations using FortiDLP.

This course delves into the advanced configuration and use cases of FortiSASE, including Agentless Zero Trust Network Access (ZTNA), Cloud Access Security Broker (CASB), Data Loss Prevention (DLP), Bi-directional Private Access Traffic Flow, and Digital Experience Monitoring (DEM).

FortiDeceptor as a Service is a SaaS-based deception solution that enables organizations to swiftly detect and respond to in-network attacks, such as stolen credentials, lateral movement, man-in-the-middle, and ransomware. It creates a fabricated deception network that diverts attacks outside the actual network while luring attackers into revealing themselves.

When integrated into the Fortinet Security Fabric, FortiDeceptor enhances visibility and automation, allowing organizations to identify compromised hosts, track attacker movements, capture forensic details, and quarantine affected endpoints.

In this lab, students will configure FortiDeceptor as a Service to protect a basic network environment. Participants will set up the edge appliance, configure basic FortiDeceptor settings, deploy deception decoys, and distribute token packages to network devices. Utilizing FortiDeceptor’s integrations, students will configure FortiClient, FortiSandbox, and FortiAnalyzer for advanced reporting, malware detection and analysis, playbook automation, and endpoint isolation and quarantine. Participants will then assume the role of an attacker, exploiting systems and triggering deception decoys. This activity will be analyzed in the FortiDeceptor console and FortiAnalyzer, with FortiDeceptor and FortiClient used to detect additional malware and quarantine compromised hosts.

This hands-on training class empowers network professionals to design, configure, and manage Fortinet switches in both FortiLink and standalone modes, leveraging FortiGate, FortiAuthenticator, and FortiClient ZTNA for robust enterprise networks. Participants will master deployment, optimization, and stacking of Fortinet switches to ensure high availability and scalability in campus environments, utilizing FortiGate for integrated management, FortiAuthenticator for secure identity management, and FortiClient ZTNA for zero-trust access. The course emphasizes practical troubleshooting techniques to maintain network reliability and performance, addressing real-world scenarios. Ideal for IT teams building secure, high-performance campus networks with Fortinet solutions.

Join us for in-depth exploration of Fortinet SD-WAN configuration. This workshop focuses on using CLI to configure a multiregional SD-WAN topology, including VRF segmentation, ADVPN, BGP, PKI and includes the latest SD-WAN features from FortiOS 7.6.

Modern enterprises face increasingly sophisticated and persistent cyber threats, with over 90% of attacks originating from email. Traditional security solutions often struggle to detect and mitigate advanced threats like phishing, business email compromise (BEC), ransomware, and account takeovers.

Fortinet offers robust solutions with FortiMail and Advanced Cloud Email Security (ICES). FortiMail provides multi-layered protection against email-borne threats, validated by independent testing firms. Powered by FortiGuard Labs threat intelligence and integrated into the Fortinet Security Fabric, FortiMail helps prevent, detect, and respond to threats including spam, phishing, malware, zero-day threats, impersonation, and BEC attacks.

Fortinet’s Advanced Cloud Email Security, recognized by Gartner, combines high detection accuracy with patented anti-evasion technology and AI, along with a managed Incident Response service, delivering comprehensive security for the modern workforce.

In this workshop, you will learn to use powerful anti-spam and anti-malware components, along with advanced techniques such as outbreak protection, content disarm and reconstruction, sandbox analysis, impersonation detection, and other technologies to stop bulk email, phishing, ransomware, BEC, and targeted attacks. We will also demonstrate phishing campaigns for employee education, followed by Security Awareness training. The Fortinet Security Awareness and Training service provides engaging and interactive training to create a cyber-aware workforce, while being mindful of time and productivity demands.

FinOps is now a quasi-engineering effort to optimize spending while minimizing the the time and effort from “procure-to-provision”.  In this session, students will learn how FortiFlex provides and engineering approach to automated, cost optimized deployment of Fortinet resources. Users will come away with understanding of FortiFlex structure as a usage-based billing solution, API-based deployment for automated entitlements, and now tools such as infrastructure-as-code will dramatically improve customer and provider operations. 

This course is designed as a follow-up for attendees who have previously completed the “Introduction to Support and Protect OT Environments” workshop. In this advanced course, students will commence with an air-gapped Operational Technology environment, leveraging the Virtual Wire capabilities of FortiOS. They will gain an understanding of how FortiLink can be utilized and will explore deception techniques through a series of laboratory exercises. These exercises will facilitate the integration of Information Technology and OT, including the provision of remote access, while ensuring the security of the environment. Additionally, students will deepen their knowledge and understanding of Virtual patching.

In this session we will cover NDR 101 and how FortiAI up-levels analysts along the learning journey within the SOC. We will work through the use of automation tie in with FortiSOAR and how FortiAI will help further the creation of playbooks and investigating a FortiNDR Cloud alert.

This Foundational Workshop commences with an in-depth exploration of the procedures necessary for the successful preparation and deployment of Fortinet’s FortiPAM solution using lecture and hands on labs. Next students will learn the preparation and deployment of Fortinet’s FortiAuthenticator solution, focusing on basics and then to more complicated use cases. Participants will acquire hands-on FortiPAM experience in the creating of Templates, Targets and Secrets. Participants will acquire hands-on FortiAuthenticator experience in creating RADIUS Clients, SAML IdPs and Trusted Endpoint use cases.

This workshop will guide participants through the setup of FortiManager and FortiGate, starting from base configurations to a complete SD-WAN deployment. It will also cover essential day-to-day management operations. Utilizing the latest SD-WAN configuration recommendations in version 7.6, the workshop will include deploying BGP on loopback using only native functions such as variables, templates, and blueprints within FortiManager.

In this three-part lab immersion, you will be challenged to configure a variety of Fortinet products based on a set of objectives. Fortinet products in the lab include FortiGate, FortiManager, FortiAnalyzer, FortiWeb, FortiMail, FortiADC, FortiAuthenticator, and FortiSandbox

During the sessions, an FCX Cybersecurity certified instructor is available for questions and to support you while you complete tasks.

Agenda

• Networking
• Operations
• VPN
• Policies
• Authentication
• Management
• Advanced Technologies

NOTE: Parts 1 and 2 will be automatically added to your schedule.

In today's enterprise environment, the ability to quickly identify and respond to real threats at scale is crucial. Fortinet's FortiAnalyzer offers the functionality and capacity to meet the demands of a security operations center (SOC). With its enhanced Fabric capabilities, FortiAnalyzer can globally scale log ingestion rates and disk capacity, supporting complete multi-tenancy.

FortiAnalyzer addresses the need for ingesting third-party syslog data by parsing and normalizing it into its SIEM database, where it performs event handling, alerting, and reporting. This track will teach participants how FortiAnalyzer correlates Fortinet Fabric logs with normalized syslog data using event correlation handlers.

FortiAnalyzer introduces new SOC features aimed at streamlining detection, correlation, investigation, and remediation processes. Participants will learn to leverage the Incident component, enabling them to manually or automatically raise incidents from detected events. Incident management can be initiated from the SOC dashboard, with threat indicator enrichment configured via playbooks. Containment can be propagated through playbook connectors, and threat data can be pushed to FortiManager. FortiGates can then automatically block newly detected threat indicators. The integration and efficiency of these SOC correlations and remediations are particularly valuable when scaled across numerous devices.

This course provides an in-depth exploration of FortiSASE's thin edge and secure edge connectivity use cases, leveraging FortiBranchSASE devices. It also covers the SD-WAN on-ramp and third-party generic IPsec features. Participants will engage in hands-on activities to onboard devices, ensuring that all user traffic is directed to FortiSASE for comprehensive visibility and security inspection.

This hands-on training class empowers network professionals to design, configure, and manage Fortinet switches in both FortiLink and standalone modes, leveraging FortiGate, FortiAuthenticator, and FortiClient ZTNA for robust enterprise networks. Participants will master deployment, optimization, and stacking of Fortinet switches to ensure high availability and scalability in campus environments, utilizing FortiGate for integrated management, FortiAuthenticator for secure identity management, and FortiClient ZTNA for zero-trust access. The course emphasizes practical troubleshooting techniques to maintain network reliability and performance, addressing real-world scenarios. Ideal for IT teams building secure, high-performance campus networks with Fortinet solutions.

Join us for an exclusive session where we unveil the latest advancements in FortiGate hardware updates and the cutting-edge features of FortiOS. Discover how these upgrades empower your network security with enhanced performance, scalability, and innovative functionalities.

As OT networks increasingly converge with IT, this course aims to train students on IT/OT convergence principles. Participants will begin with fundamental SD-WAN principles tailored for OT environments. The course includes a detailed lab on deploying secure remote access using FortiSRA. FortiAuthenticator will be utilized to address OT identity and certificate deployment needs. Additionally, the course will cover basic Zero Trust Network Access (ZTNA) and proxying traffic between IT and OT networks. The course will conclude with a review of IT/OT NOC/SOC convergence requirements.

FinOps is now a quasi-engineering effort to optimize spending while minimizing the the time and effort from “procure-to-provision”.  In this session, students will learn how FortiFlex provides and engineering approach to automated, cost optimized deployment of Fortinet resources. Users will come away with understanding of FortiFlex structure as a usage-based billing solution, API-based deployment for automated entitlements, and now tools such as infrastructure-as-code will dramatically improve customer and provider operations. 

Cloud network use cases have expanded to support Cloud WAN which uses global and core networking concepts along with core networking policy (defined via console or API) to automate how VPCs, VPNs, and other environments connect to your network. In this session users will get hands on to understand how FortiGate-VM supports advanced routing segmentation, centralized vs decentralized inspection, and other integration concepts for AWS.

Microsoft continues to expand and mature their networking services portfolio with enhanced and flexible routing.  The Azure Virtual WAN (vWAN) service is core to this effort and required knowledge for Azure practitioners. In this session students will get the latest hands-on experience with Fortinet’s FortiGate-VM integration into Azure vWAN.  Topics will include BGP routing, new internet edge inbound services, Azure Route Server use, and other key technology features. A basic understanding of Azure is required and the Public Cloud 201 - Azure Fundamentals course is recommended with this.

Learn the details of hacking in this Capture the Flag (CTF) session.  In this hands-on session participants will tackle real-world cybersecurity challenges, solving puzzles and breaking into systems to capture hidden pieces of data such as passwords, network details and hidden files.
Through guided exercises, you’ll explore key concepts like network security, vulnerabilities, and reverse hashing. Learn to think like a hacker using tools such as Kali Linux and Metasploit.  FortiEDR and FortiAnalyzer will be used view the step involved in hacking as well as how the products work together to prevent such activity on a network.

This course delves into the advanced configuration and use cases of FortiSASE, including Agentless Zero Trust Network Access (ZTNA), Cloud Access Security Broker (CASB), Data Loss Prevention (DLP), Bi-directional Private Access Traffic Flow, and Digital Experience Monitoring (DEM).

FortiDeceptor as a Service is a SaaS-based deception solution that enables organizations to swiftly detect and respond to in-network attacks, such as stolen credentials, lateral movement, man-in-the-middle, and ransomware. It creates a fabricated deception network that diverts attacks outside the actual network while luring attackers into revealing themselves.

When integrated into the Fortinet Security Fabric, FortiDeceptor enhances visibility and automation, allowing organizations to identify compromised hosts, track attacker movements, capture forensic details, and quarantine affected endpoints.

In this lab, students will configure FortiDeceptor as a Service to protect a basic network environment. Participants will set up the edge appliance, configure basic FortiDeceptor settings, deploy deception decoys, and distribute token packages to network devices. Utilizing FortiDeceptor’s integrations, students will configure FortiClient, FortiSandbox, and FortiAnalyzer for advanced reporting, malware detection and analysis, playbook automation, and endpoint isolation and quarantine. Participants will then assume the role of an attacker, exploiting systems and triggering deception decoys. This activity will be analyzed in the FortiDeceptor console and FortiAnalyzer, with FortiDeceptor and FortiClient used to detect additional malware and quarantine compromised hosts.

This hands-on training class empowers network professionals to design, configure, and manage Fortinet switches in both FortiLink and standalone modes, leveraging FortiGate, FortiAuthenticator, and FortiClient ZTNA for robust enterprise networks. Participants will master deployment, optimization, and stacking of Fortinet switches to ensure high availability and scalability in campus environments, utilizing FortiGate for integrated management, FortiAuthenticator for secure identity management, and FortiClient ZTNA for zero-trust access. The course emphasizes practical troubleshooting techniques to maintain network reliability and performance, addressing real-world scenarios. Ideal for IT teams building secure, high-performance campus networks with Fortinet solutions.

Join us for in-depth exploration of Fortinet SD-WAN configuration. This workshop focuses on using CLI to configure a multiregional SD-WAN topology, including VRF segmentation, ADVPN, BGP, PKI and includes the latest SD-WAN features from FortiOS 7.6.

Modern enterprises face increasingly sophisticated and persistent cyber threats, with over 90% of attacks originating from email. Traditional security solutions often struggle to detect and mitigate advanced threats like phishing, business email compromise (BEC), ransomware, and account takeovers.

Fortinet offers robust solutions with FortiMail and Advanced Cloud Email Security (ICES). FortiMail provides multi-layered protection against email-borne threats, validated by independent testing firms. Powered by FortiGuard Labs threat intelligence and integrated into the Fortinet Security Fabric, FortiMail helps prevent, detect, and respond to threats including spam, phishing, malware, zero-day threats, impersonation, and BEC attacks.

Fortinet’s Advanced Cloud Email Security, recognized by Gartner, combines high detection accuracy with patented anti-evasion technology and AI, along with a managed Incident Response service, delivering comprehensive security for the modern workforce.

In this workshop, you will learn to use powerful anti-spam and anti-malware components, along with advanced techniques such as outbreak protection, content disarm and reconstruction, sandbox analysis, impersonation detection, and other technologies to stop bulk email, phishing, ransomware, BEC, and targeted attacks. We will also demonstrate phishing campaigns for employee education, followed by Security Awareness training. The Fortinet Security Awareness and Training service provides engaging and interactive training to create a cyber-aware workforce, while being mindful of time and productivity demands.

As OT networks increasingly converge with IT, this course aims to train students on IT/OT convergence principles. Participants will begin with fundamental SD-WAN principles tailored for OT environments. The course includes a detailed lab on deploying secure remote access using FortiSRA. FortiAuthenticator will be utilized to address OT identity and certificate deployment needs. Additionally, the course will cover basic Zero Trust Network Access (ZTNA) and proxying traffic between IT and OT networks. The course will conclude with a review of IT/OT NOC/SOC convergence requirements.

Cloud network use cases have expanded to support Cloud WAN which uses global and core networking concepts along with core networking policy (defined via console or API) to automate how VPCs, VPNs, and other environments connect to your network. In this session users will get hands on to understand how FortiGate-VM supports advanced routing segmentation, centralized vs decentralized inspection, and other integration concepts for AWS.

Microsoft continues to expand and mature their networking services portfolio with enhanced and flexible routing.  The Azure Virtual WAN (vWAN) service is core to this effort and required knowledge for Azure practitioners. In this session students will get the latest hands-on experience with Fortinet’s FortiGate-VM integration into Azure vWAN.  Topics will include BGP routing, new internet edge inbound services, Azure Route Server use, and other key technology features. A basic understanding of Azure is required and the Public Cloud 201 - Azure Fundamentals course is recommended with this.

In this session we will cover NDR 101 and how FortiAI up-levels analysts along the learning journey within the SOC. We will work through the use of automation tie in with FortiSOAR and how FortiAI will help further the creation of playbooks and investigating a FortiNDR Cloud alert.