During this five-day hands-on instructor-led course, you will create and test a Forcepoint DLP deployment, perform indepth analysis of DLP component architecture, integrate Forcepoint DLP with other products, build policies, and leverage configurable script classifiers. Using the knowledge you have gained from the Forcepoint DLP Administrator course, you will create and fine tune fingerprint and machine learning classifiers; configure discovery tasks to crawl files and databases; build, install, and manage DLP endpoints; and use data endpoints for application control, encryption, and discovery.

You will perform advanced incident data management and maintenance tasks through Security Manager, such as dealing with failovers, upgrades and troubleshooting, including advanced debugging of DLP logs.

• Summarize the history of Forcepoint DLP.
• Identify the primary Forcepoint DLP components.
• Describe the Forcepoint DLP installation process.
• Configure the DLP base environment.
• Install the Analytics Engine to enable data analysis.
• Install Protector for web scanning.
• Describe DLP Policy Engine architecture and event lifecycle.
• Summarize the DLP Policy structure and test a DLP policy.
• Describe the Analytics Engine architecture
• Explain and test incident data flow.
• Describe the benefits of deploying a Supplemental Server.
• Install and configure a Supplemental Server.
• Create and test Fingerprinting and Machine Learning.
• Install F1E to protect your sensitive data.
• Test F1E anti-tampering and temporary bypass functions.
• Identify Endpoint log files.
• Trace Endpoint agent issues.
• Exclude applications from DLP Endpoint.
• Debug F1E using log files.
• Create and run a Network Discovery task and an Endpoint Discovery task.
• Run DLP reports.
• Configure DLP roles.
• Generate Discovery reports and troubleshoot the crawler.
• Identify and run remediation scripts.
• Describe the DLP component update process.
• Describe automatic DLP component synchronization.
• Configure backup and restore procedures.
• Use the upgrade validation tool and upgrade DLP.
• Describe the infrastructure database.
• Investigate Policy Engine timeouts.

Module 1: The Evolution of Forcepoint DLP

• Data security story
• Forcepoint story

Module 2: Installing Forcepoint DLP

• Identifying the primary Forcepoint DLP components
• Preparing for installation
• Installing Forcepoint Security Manager
• Configuring DLP base environment
• Configuring Protector for email scanning
• Performing initial testing of DLP

Module 3: Installing Additional DLP Components

• DLP Module review
• Installing Analytics Engine
• Installing Protector for web

Module 4: DLP Policy Engine

• Describing Policy Engine architecture and event life cycle
• Summarizing DLP policy structure
• Testing Policy Engine

Module 5: Analyzing data

• Describing the Analytics Engine architecture and algorithm
• Running Analytics Engine manually
• Testing Analytics Engine

Module 6: Supplemental Server

• Describing the benefits of deploying Supplemental Server.
• Installing Supplemental Server.

Module 7: Configuring Fingerprinting and Machine Learning

• Describing the classifiers created by crawlers
• Configuring advanced file fingerprint
• Configuring advanced database fingerprinting
• Configuring machine learning

Module 8: Forcepoint One Endpoint (F1E)

• Describing Endpoint Server architecture and endpoint communication
• Installing Forcepoint One Endpoint (F1E) to include anti-tampering
• Using Forcepoint One Endpoint (F1E)

Module 9: Troubleshoot DLP Endpoint Scanning

• Troubleshooting endpoint agents
• Tracing endpoint agent issues
• Excluding applications from DLP endpoint
• Debugging F1E

Module 10: DLP Discovery tasks

• Discovering hidden data
• Load balancing the crawler
• Creating a Network Discovery task
• Using Endpoint Discovery

Module 11: DLP Maintenance

• Identifying and running reports
• Configuring DLP roles
• Generating Discovery task reports
• Deleting a discovery job
• Identifying types of remediation script
• Running a remediation script
• Inspecting a remediation script
• Updating DLP components
• Moving and replacing forensics
• Describing automatic DLP component synchronization
• Recording fingerprint task
• Configuring DLP backup and DSS restore procedures
• Performing a DLP backup
• Using the upgrade validation tool
• Fixing common SQL issues
• Describing the Forcepoint infrastructure
• Investigating Policy Engine timeouts

Module 12: Complex Classifiers

• Identifying types of classifier
• Building a data security policy
• Combining multiple classifiers
• Describing nested transactions logic

• System Engineers, high-level System Administrators, and IT professionals assisting with DLP deployment, configuration, and administration
• Consultants, system architects, integrators and planners who help customers with Forcepoint DLP implementations
• Sales Engineers, Implementation Specialists, Deployment Specialists, Network Architects, Professional Services, Technical Support

• Completion of the Forcepoint DLP Administrator Course and certification
• Intermediate knowledge of networking and computer security concepts