Skip to main content

Security Information and Event Management (SIEM)/Security Orchestration Automation & Response (SOAR) XCSA 1103

Cybersecurity Network Admin Course

International Fees

International fees are typically three times the amount of domestic fees. Exact cost will be calculated upon completion of registration.

Course details

In this course, you will learn about FortiSIEM initial configurations, architecture, and the discovery of devices on the network and SOAR products in the industry. You will also learn how to collect performance information and aggregate it with Syslog data to enrich the overall view of the health of your environment, how to use the configuration database to greatly facilitate compliance audits, and how to integrate FortiSIEM into your network awareness infrastructure. This course may be eligible for students to receive funding through the StrongerBC Future Skills Grant at www.bcit.ca/financial-aid/strongerbc-future-skills-grant. Students register themselves into the course, then apply for the StrongerBC Future Skills Grant to cover payment, if eligible.

Prerequisite(s)

  • Network Defense Essential (FortiGate) , Basic knowledge of networking, routing, and switching and OS.

Credits

1.0

Domestic fees

$213.60

Course offerings

Winter 2024

Below is one offering of XCSA 1103 for the Winter 2024 term.

CRN 90076

Duration

Mon Feb 19 - Fri Apr 26 (10 weeks)

  • 10 weeks
  • CRN 90076
  • Domestic fees $213.60
    International fees are typically three times the amount of domestic fees.
Class meeting times
Dates Days Times Locations
Feb 19 - Apr 26 N/A N/A Online
Instructor

Hamidreza Talebi

Course outline

View

Domestic fees

$213.60

Important information
  1. Departmental approval needed
  2. Important course information will be sent to you prior to your course start date. Check your myBCIT email account to access this information.
  3. International fees are typically three times the amount of domestic fees. Exact cost will be calculated upon completion of registration.
  4. If you have any question about this course, please contact the Program Assistant Selina Li - selina_li@bcit.ca. Please include your BCIT student ID (if you have one). Note: BCIT reserves the right to cancel courses. In the event of a course cancellation, you will be notified at least two business days prior to the course start. Please ensure that your contact information is current in your myBCIT.
Status

In Progress

This course offering is in progress. Please check this page for other currently available offerings or subscribe to receive email updates.

Spring/Summer 2024

Below is one offering of XCSA 1103 for the Spring/Summer 2024 term.

CRN 68166

Duration

Mon May 13 - Fri Jul 19 (10 weeks)

  • 10 weeks
  • CRN 68166
  • Domestic fees $213.60
    International fees are typically three times the amount of domestic fees.
Class meeting times
Dates Days Times Locations
May 13 - Jul 19 N/A N/A Online
Instructor

Hamidreza Talebi

Course outline

View

Domestic fees

$213.60

Important information
  1. Departmental approval needed
  2. Important course information will be sent to you prior to your course start date. Check your myBCIT email account to access this information.
  3. International fees are typically three times the amount of domestic fees. Exact cost will be calculated upon completion of registration.
  4. If you have any question about this course, please contact the Program Assistant Selina Li - selina_li@bcit.ca. Please include your BCIT student ID (if you have one). Note: BCIT reserves the right to cancel courses. In the event of a course cancellation, you will be notified at least two business days prior to the course start. Please ensure that your contact information is current in your myBCIT.
Status

Learning Outcomes

Upon successful completion of this course, the student will be able to:

  • Identify business drivers for using SIEM tools
  • Describe key features of FortiSIEM
  • Understand how collectors, workers, and supervisors work together
  • Create new users
  • Describe and enable devices for discovery
  • Configure users when to use agents
  • Perform real-time, historic structured searches
  • Group and aggregate search results
  • Create custom incident rules
  • Edit existing, or create new, reports
  • Configure and customize the dashboards
  • Identify Windows agent components
  • Describe the purpose of Windows agents
  • Understand how the Windows agent manager works in various deployment models
  • Identify reports that relate to Windows agents
  • Understand the FortiSIEM Linux file monitoring agent
  • Understand agent registration
  • Monitor agent communications after deployment
  • Describe SOAR

Effective as of Winter 2022

Related Programs

Security Information and Event Management (SIEM)/Security Orchestration Automation & Response (SOAR) (XCSA 1103) is offered as a part of the following programs:

School of Energy

  1. Cybersecurity Analysis for Network Administrators
    Microcredential Part-time

Subscribe

Interested in being notified about future offerings of Security Information and Event Management (SIEM)/Security Orchestration Automation & Response (SOAR) (XCSA 1103)? If so, fill out the information below and we'll notify you by email when courses for each new term are displayed here.

  • Privacy Notice: The information you provide will be used to respond your request for BCIT course information and is collected under Section 26(c) of the Freedom of Information and Protection of Privacy Act (FIPPA). For more information about BCIT’s privacy practices contact: Associate Director, Privacy, Information Access & Policy Management, British Columbia Institute of Technology, 3700 Willingdon Ave. Burnaby, BC V5A 3H2, email: privacy@bcit.ca.