This four-day entry-level primer on FireEye Helix covers the Helix
workflow, from triaging Helix alerts, creating and scoping cases and
using Helix and Endpoint Security tools to conduct investigative
searches across the enterprise. Hands-on activities include writing
MQL searches as well as analyzing and validating Helix, Network
Security and Endpoint Security alerts.
Training provided by: FireEye
START DATE: October 25, 2021 9:00am CDT
END DATE: October 28, 2021 5:00pm CDT
LOCATION: ILT via WebEx. Details will be provided on
- Expertise On Demand (EoD) units will be accepted
Completion of three FireEye web-based training courses prior to the
instructor-led portion of the course: Network Security for Helix,
Central Management for Helix, FireEye Endpoint Security for Analysts.
Details on these courses will be provided to registrants of the
FireEye Helix instructor-led training course. Students should have a
working understanding of networking and network security, the Windows
operating system, file system, registry, and use of the CLI.
Students must have access to a laptop running one of the following
browsers: Chrome (latest), Firefox (latest), or Internet Explorer (10
or greater). Wireshark is recommended.
FireEye classes include hands-on activities in the FireEye Training
Lab. Important: Students must be able to connect to the FireEye
Training Lab. Please verify connectivity for the labs prior to the
first day of class by visiting portal.ork.training.fireeye.com and portal.sfo.training.fireeye.com. You should see
the lab login screens.
The lab is a protected environment and requires a login for access.
Once registered for class, students will receive their training lab
credentials via email. These credentials will not be activated until
the first day of class, and will expire upon class completion. Please
note that any attempts to log in prior to class commencement will fail.