Cisco Training Courses

Cisco Training Courses

Insoft has been serving IT industry with authorized Cisco courses training, since 2010. Find all the relevant information on Cisco training on this page.

View More

Cisco Certifications

Experience a blended learning approach that combines the best of instructor-led training and self-paced e-learning to help you prepare for your certification exam.

View More

Cisco Learning Credits

Cisco Learning Credits (CLCs) are prepaid training vouchers redeemed directly with Cisco that make planning for your success easier when purchasing Cisco products and services.

Have CLCs and want to redeem them?

Cisco Continuing Education

The Cisco Continuing Education Program offers all active certification holders flexible options to recertify by completing a variety of eligible training items.

View More

Cisco U

Cisco U. is customized to achieve your learning needs as this provides learning paths that includes wide range of topics, including CCNA, Cloud and Network Automation Essentials.

Browse Catalogue

Cisco Business Enablement

The Cisco Business Enablement Partner Program focuses on sharpening the business skills of Cisco Channel Partners and customers.

View More

Fortinet Technical Certifications

Insoft Services´ training capabilities rely on the excellence of our exclusive Fortinet Certified Trainers (FCT). We are dedicated to providing high-quality training to Fortinet Customers and Partners.

View More

Fortinet Technical Courses

Insoft is recognised as Fortinet Authorized Training Center in selected locations across EMEA.

View More

ATC Status

Check our ATC Status across selected countries in Europe.

View More

Fortinet Services Packages

Insoft Services has developed a specific solution to streamline and simplify the process of installing or migrating to Fortinet Products.

Browse Packages

Prepforce Bootcamp

The only comprehensive source available today to prepare for Fortinet NSE 8 certification globally.

View More

Microsoft Training

Insoft Services provides Microsoft training in EMEAR. We provide Microsoft technical training and certification courses that are led by world-class instructors.

View More

Technical Training

The evolution of Extreme Networks Technical Training provides a comprehensive progressive pathway from Associate to Professional accreditation.

View More

ATP Accreditation

As an authorised training partner (ATP), Insoft Services ensures that you receive the highest standards of education available.

View More

What we do

Through our global presence and partner ecosystem, we provide strategic IT consulting services to align IT services with customers' business goals.

View More

 

We are pleased to launch pre-scoped Enterprise Networking Consulting Packages, our ready-made solutions, tailored to ensure efficiency and cost containment.

 

View More

 

We specialize in the deployment of vendor-specific automation tools as well as open-source and vendor-independent solutions, that can be tuned in accordance with the business needs of a specific organization.

 

View More

 

We provide comprehensive IoT consultancy, deployment and support solutions for businesses that want to launch or improve their use of connected technologies.

 

In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

View More

 

In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

View More

 

In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

 

View More

 

In a world where technologies are evolving rapidly, every company - business needs a partner to rely on and trust for the smooth and secure operation of its network infrastructure.

 

View More
Cisco Training Courses

 

We provide the highest level of expertise on Cisco consultancy services, that target audits of your current network and implementing updates for improved operational performance, secure data and compliant systems.

View More

 

We provide the highest level of expertise on Fortinet consultancy services that target audits of your current network and implementing updates for improved operational performance, secure data and compliant systems.

View More

 

Our team can help enterprises, get the most value from Extreme products and services following our predefined value-added packages or custom ones that fits business needs.

 

View More

 

TXOne Networks provides cybersecurity solutions that ensure the reliability and safety of ICS and OT environments through the OT zero trust methodology protecting assets for their entire life cycle.

 

View More

About Us

Our training portfolio includes a wide range of IT training from IP providers, including Cisco, Extreme Networks, Fortinet, Microsoft, to name a few, in EMEA.

View More

Forcepoint DLP System Engineer

Contact Us

We would love to hear from you. Please complete this form to pre-book or request further information about our delivery options.

Data Protection & Privacy

I consent to receive emails and/or calls from Insoft Services related to the Insoft Services´ products and services.
I acknowledge that my data will be collected and processed as described in the Insoft Services privacy policy.

Close

Forcepoint DLP System Engineer

Enroll Now
Duration
5 Days
Delivery
(Online and onsite)
Price
Price Upon Request

In this instructor led virtual course, you will create and test a Forcepoint DLP deployment, perform in- depth analysis of DLP component architecture, integrate Forcepoint DLP with local and cloud based products, build policies, leverage configurable script classifiers, create and fine tune fingerprint and machine learning classifiers, configure discovery tasks to crawl files and databases, build, install, and manage DLP endpoints, use data endpoints for application control, encryption and discovery, manage incident data through security manager as well as through SQL, and perform maintenance tasks, such as dealing with failovers, upgrades and troubleshooting of all of the above, including advanced debugging of DLP logs.

  • Provide an organized list of available resources for support when working with Forcepoint DLP.
  • Classify the basic methodologies for Forcepoint DLP deployment depending on the scale (single datacenter or multiple datacenter).
  • Identify software components (policy engine interface, PE, crawler, OCR, endpoint servers,agents) and hardware components used by Forcepoint DLP.
  • Itemize and explain the software components and database locations used in Forcepoint Security Manager infrastructure.
  • Itemize and explain the software components and database locations used in Forcepoint Security Manager infrastructure.

  • Diagram and explain the internal architecture used by policy engine, data batchsServer, and message broker, as well as security manager and each DLP system module (WCG, ESG, DSS server, protector).
  • Document possible options for deployment patterns, including web and email traffic monitoring.
  • Formulate sizing requirements for DLP deployments, based on environment and user demands.
  • Configure and demonstrate policy engine load balancing features.
  • Generate artificial traffic using regression testing tools (PolicyEngineClient.exe, ContentExtractorClient.exe).

  • Explain basic configuration and troubleshooting for a DLP protector.
  • Explain basic configuration and troubleshooting for a DLP mobile agent.
  • Identify upgrade requirements and procedures for upgrading a protector or mobile agent.
  • Explain basic configuration and troubleshooting for LDAP import and ResourceResolver.
  • Identify basic requirements and functions when integrating DLP with web security, including DLP only content gateway.
  • Analyze methods of integrating DLP with email security, including leveraging email security action plans in DLP.
  • Explain basic configuration and troubleshooting for the analytics engine.
  • Identify the elements of the Incident risk ranking interface elements in Forcepoint security manager, and explain their functions.
  • Configure and test email encryption using Forcepoint secure messaging (park and pull).
  • Modify a protector deployment to pair with a web content gateway in ICAP mode.
  • Enable the web security linkings service, import URL categories, and test geolocation lookup on web DLP policies.

  • Compare methodologies for diagnosing and resolving potential issues occurring in Forcepoint DLP.
  • Discuss and analyze DLP troubleshooting use cases.
  • Document log and debug topic structure used in policy engine debugging.
  • Document log and debug topic structure used for DLP system modules (security manager, protector, content gateways, analytics engine).
  • Enable debugging of Tomcat logs on Forcepoint security manager.
  • Enable debugging of Policy Engine logs on an appliance (email security gateway), and use debug information to track live transactions as they are submitted.

  • Define an Acceptable Use Policy as a preface to configuring policies and rules.
  • Identify and define the three categories of DLP policies.
  • Analyze Boolean Logic as used in DLP policies, and formulate examples, including an ‘off switch’ argument.
  • Explain how DLP interacts with Microsoft RMS using protected file classifiers.
  • Analyze the uses of and compare the inherent accuracy of the different types of classifiers DLP uses (key phrases, dictionaries, regular expressions, scripts, file properties, machine learning, fingerprinting).
  • Document the syntax used, and analyze basic use cases for regular expression classifiers.
  • Explain the different components of script (a.k.a. predefined) classifiers, and how natural language processing functions.
  • Analyze use cases involving configurable script classifiers, including the email to competitors classifier.
  • Define exceptions to DLP policies using LDAP search expressions.
  • Explain, configure, and test the different components of the customizable IDs classifier.

  • Define the potential resources we can scan using Forcepoint DLP discovery.
  • Explain the methods used to assist crawlers when dealing with very large discovery tasks.
  • Manually administrate discovery jobs using WorkSchedulerWebServiceClient.
  • Explain configuration of discovery tasks against cloud services (Sharepoint Online, Exchange Online, Office 365, Box.com).
  • Differentiate between the three types of remediation scripts and explain how to use discovery remediation scripts using .bat files.
  • Explain basic configuration for deploying a DLP email gateway in the cloud using Microsoft Azure.
  • Explain basic configuration for integrating Forcepoint DLP with Forcepoint CASB.
  • Configure and run a network discovery task using a crawler, and configure load balancing for the crawler.
  • Run an incident management remediation script.

  • Document and analyze the implications of the N-gram (5-word sliding window) fingerprinting algorithm.
  • List and explain best practices when performing both file and database fingerprinting, including the use of validation scripts.
  • Explain the functionality of machine learning versus fingerprinting, and differentiate PreciseID from the support vector machine (SVM) algorithm.
  • Diagram and explain Workscheduler (crawler) architecture, functionality, and debugging.
  • Explain how fingerprint tasks may be recorded and replayed for troubleshooting purposes.
  • Document the architecture and explain the functionality of OCR.
  • Analyze methods for troubleshooting OCR, including log file locations, best topics to debug, and manual testing using OCRClient.
  • Create a file fingerprint classifier, configure it in a policy, and run multiple tests differentiated using an Ignored Section classifier.
  • Perform database fingerprinting on an imported .csv file, configure the classifier in a policy, and test functionality.
  • Prepare training sets for a machine learning classifier, create the classifier and fine tune accuracy, then evaluate success using an automated test script (.bat file with PolicyEngineClient).
  • Install a DSS Server with an OCR component, then test OCR using both external email traffic and manually generated traffic using OCRClient.

  • Diagram and analyze endpoint server architecture.
  • Diagram and analyze endpoint agent architecture, including log file locations and debugging.
  • Explain and demonstrate Endpoint command line functionality (WDEUtil).
  • Document web browser integration using browser extensions, and explain troubleshooting methods with use cases.
  • Differentiate between unhooked and trusted endpoint applications.
  • Explain how to use tasklist from the command line to thoroughly unhook and application and all related .dll files.
  • Explain how serial numbers may be used to identify removable media for use in DLP policies.
  • Build and install a DLP endpoint package, then test temporary bypass function.
  • Configure and deploy a custom message file for custom endpoint alerts as part of an endpoint package.
  • Debug endpoint agent and perform log analysis.
  • Use tasklist to completely unhook an application and all .dll files, then test to confirm success.
  • Create an endpoint encryption action plan and test using emulated USB removable media, then attempt decryption using Forcepoint decryption utility.
  • System engineers, high level system administrators, IT staff
  • Consultants, system architects
  • Sales engineers, implementation specialists, deployment specialists
  • Network architects, professional services, and technical support
  • Completion of the Forcepoint DLP Administrator Course and certification
  • Intermediate knowledge of networking and computer security concepts

Overview

In this instructor led virtual course, you will create and test a Forcepoint DLP deployment, perform in- depth analysis of DLP component architecture, integrate Forcepoint DLP with local and cloud based products, build policies, leverage configurable script classifiers, create and fine tune fingerprint and machine learning classifiers, configure discovery tasks to crawl files and databases, build, install, and manage DLP endpoints, use data endpoints for application control, encryption and discovery, manage incident data through security manager as well as through SQL, and perform maintenance tasks, such as dealing with failovers, upgrades and troubleshooting of all of the above, including advanced debugging of DLP logs.

  • Provide an organized list of available resources for support when working with Forcepoint DLP.
  • Classify the basic methodologies for Forcepoint DLP deployment depending on the scale (single datacenter or multiple datacenter).
  • Identify software components (policy engine interface, PE, crawler, OCR, endpoint servers,agents) and hardware components used by Forcepoint DLP.
  • Itemize and explain the software components and database locations used in Forcepoint Security Manager infrastructure.
  • Itemize and explain the software components and database locations used in Forcepoint Security Manager infrastructure.

  • Diagram and explain the internal architecture used by policy engine, data batchsServer, and message broker, as well as security manager and each DLP system module (WCG, ESG, DSS server, protector).
  • Document possible options for deployment patterns, including web and email traffic monitoring.
  • Formulate sizing requirements for DLP deployments, based on environment and user demands.
  • Configure and demonstrate policy engine load balancing features.
  • Generate artificial traffic using regression testing tools (PolicyEngineClient.exe, ContentExtractorClient.exe).

  • Explain basic configuration and troubleshooting for a DLP protector.
  • Explain basic configuration and troubleshooting for a DLP mobile agent.
  • Identify upgrade requirements and procedures for upgrading a protector or mobile agent.
  • Explain basic configuration and troubleshooting for LDAP import and ResourceResolver.
  • Identify basic requirements and functions when integrating DLP with web security, including DLP only content gateway.
  • Analyze methods of integrating DLP with email security, including leveraging email security action plans in DLP.
  • Explain basic configuration and troubleshooting for the analytics engine.
  • Identify the elements of the Incident risk ranking interface elements in Forcepoint security manager, and explain their functions.
  • Configure and test email encryption using Forcepoint secure messaging (park and pull).
  • Modify a protector deployment to pair with a web content gateway in ICAP mode.
  • Enable the web security linkings service, import URL categories, and test geolocation lookup on web DLP policies.

  • Compare methodologies for diagnosing and resolving potential issues occurring in Forcepoint DLP.
  • Discuss and analyze DLP troubleshooting use cases.
  • Document log and debug topic structure used in policy engine debugging.
  • Document log and debug topic structure used for DLP system modules (security manager, protector, content gateways, analytics engine).
  • Enable debugging of Tomcat logs on Forcepoint security manager.
  • Enable debugging of Policy Engine logs on an appliance (email security gateway), and use debug information to track live transactions as they are submitted.

  • Define an Acceptable Use Policy as a preface to configuring policies and rules.
  • Identify and define the three categories of DLP policies.
  • Analyze Boolean Logic as used in DLP policies, and formulate examples, including an ‘off switch’ argument.
  • Explain how DLP interacts with Microsoft RMS using protected file classifiers.
  • Analyze the uses of and compare the inherent accuracy of the different types of classifiers DLP uses (key phrases, dictionaries, regular expressions, scripts, file properties, machine learning, fingerprinting).
  • Document the syntax used, and analyze basic use cases for regular expression classifiers.
  • Explain the different components of script (a.k.a. predefined) classifiers, and how natural language processing functions.
  • Analyze use cases involving configurable script classifiers, including the email to competitors classifier.
  • Define exceptions to DLP policies using LDAP search expressions.
  • Explain, configure, and test the different components of the customizable IDs classifier.

  • Define the potential resources we can scan using Forcepoint DLP discovery.
  • Explain the methods used to assist crawlers when dealing with very large discovery tasks.
  • Manually administrate discovery jobs using WorkSchedulerWebServiceClient.
  • Explain configuration of discovery tasks against cloud services (Sharepoint Online, Exchange Online, Office 365, Box.com).
  • Differentiate between the three types of remediation scripts and explain how to use discovery remediation scripts using .bat files.
  • Explain basic configuration for deploying a DLP email gateway in the cloud using Microsoft Azure.
  • Explain basic configuration for integrating Forcepoint DLP with Forcepoint CASB.
  • Configure and run a network discovery task using a crawler, and configure load balancing for the crawler.
  • Run an incident management remediation script.

  • Document and analyze the implications of the N-gram (5-word sliding window) fingerprinting algorithm.
  • List and explain best practices when performing both file and database fingerprinting, including the use of validation scripts.
  • Explain the functionality of machine learning versus fingerprinting, and differentiate PreciseID from the support vector machine (SVM) algorithm.
  • Diagram and explain Workscheduler (crawler) architecture, functionality, and debugging.
  • Explain how fingerprint tasks may be recorded and replayed for troubleshooting purposes.
  • Document the architecture and explain the functionality of OCR.
  • Analyze methods for troubleshooting OCR, including log file locations, best topics to debug, and manual testing using OCRClient.
  • Create a file fingerprint classifier, configure it in a policy, and run multiple tests differentiated using an Ignored Section classifier.
  • Perform database fingerprinting on an imported .csv file, configure the classifier in a policy, and test functionality.
  • Prepare training sets for a machine learning classifier, create the classifier and fine tune accuracy, then evaluate success using an automated test script (.bat file with PolicyEngineClient).
  • Install a DSS Server with an OCR component, then test OCR using both external email traffic and manually generated traffic using OCRClient.

  • Diagram and analyze endpoint server architecture.
  • Diagram and analyze endpoint agent architecture, including log file locations and debugging.
  • Explain and demonstrate Endpoint command line functionality (WDEUtil).
  • Document web browser integration using browser extensions, and explain troubleshooting methods with use cases.
  • Differentiate between unhooked and trusted endpoint applications.
  • Explain how to use tasklist from the command line to thoroughly unhook and application and all related .dll files.
  • Explain how serial numbers may be used to identify removable media for use in DLP policies.
  • Build and install a DLP endpoint package, then test temporary bypass function.
  • Configure and deploy a custom message file for custom endpoint alerts as part of an endpoint package.
  • Debug endpoint agent and perform log analysis.
  • Use tasklist to completely unhook an application and all .dll files, then test to confirm success.
  • Create an endpoint encryption action plan and test using emulated USB removable media, then attempt decryption using Forcepoint decryption utility.

  • System engineers, high level system administrators, IT staff
  • Consultants, system architects
  • Sales engineers, implementation specialists, deployment specialists
  • Network architects, professional services, and technical support

  • Completion of the Forcepoint DLP Administrator Course and certification
  • Intermediate knowledge of networking and computer security concepts
Filter

Follow Up Courses

Filter

Category