FHT 200: Falcon Platform for Administrators (CrowdStrike) Training Logo

FHT 200: Falcon Platform for Administrators (CrowdStrike) Training

Live Online & Classroom Enterprise Training

Provides in-depth training on the CrowdStrike Falcon platform, focusing on endpoint protection, threat detection, and incident response. Equips administrators with the skills to manage and configure Falcon for enterprise security operations.

Looking for a private batch ?

REQUEST A CALLBACK

Need help finding the right training?

Your Message

  • Enterprise Reporting

  • Lifetime Access

  • CloudLabs

  • 24x7 Support

  • Real-time code analysis and feedback

What is FHT 200: Falcon Platform for Administrators (CrowdStrike) Training about?

Stopping breaches with the CrowdStrike Falcon® platform starts with a robust configuration. To ensure your organization is effectively protected, this comprehensive technical course covers best practice settings for protecting your hosts while advancing your administrative capabilities. Participants will develop proficiency in fundamental aspects of Falcon platform administration, from sensor deployment to advanced configuration settings. Administrators will develop the expertise needed to implement comprehensive endpoint protection, monitor sensor health, and optimize platform performance. The course emphasizes practical, real-world scenarios that administrators encounter daily, ensuring graduates can immediately apply their knowledge to protect their organizations effectively.

What are the objectives of FHT 200: Falcon Platform for Administrators (CrowdStrike) Training ?

  • Deploy and manage operating system (OS)-specific Falcon sensors in your environment 
  • Configure prevention policies, user access, and host groupings  
  • Leverage Falcon dashboards and reporting tools to monitor sensor coverage and updates  
  • Customize detection capabilities through indicator of compromise (IOC) management and exclusion settings  
  • Implement security best practices for enterprise-wide protection 

Who is FHT 200: Falcon Platform for Administrators (CrowdStrike) Training for?

  • System Administrators managing endpoint environments. 
  • Security Administrators and Analysts. 
  • IT Professionals responsible for cybersecurity operations. 
  • Endpoint Engineers and SOC team members. 
  • Professionals preparing for CrowdStrike certification tracks

What are the prerequisites for FHT 200: Falcon Platform for Administrators (CrowdStrike) Training?

Prerequisites:  

  • Knowledge of computer networking concepts and protocols, network security methodologies, privacy principles, cyber threats, and vulnerabilities  
  • Completion of eLearning courses within the Falcon Administrator Learning Path in CrowdStrike University  
  • Familiarity with Microsoft Windows, macOS, and Linux environments  
  • Ability to comprehend course curriculum presented in English 

Learning Path: 

  • Introduction to CrowdStrike Falcon Platform and Console Overview 
  • Deploying and Configuring Falcon Sensors 
  • Managing Policies, Prevention Controls, and Detections 
  • User Management, Roles, and Permissions 
  • Best Practices for Endpoint Security and Falcon Administration 

Related Courses: 

  • FHT 100: Falcon Platform for Users (CrowdStrike) 
  • Incident Response with CrowdStrike Falcon 
  • Security Operations Center (SOC) Fundamentals 
  • Endpoint Security and Threat Management

Available Training Modes

Live Online Training

1 Days

Course Outline Expand All

Expand All

  • Explore the Falcon console with the credentials provided
  • Determine roles required for access to features and functionality in the falcon console
  • Create a new user, delete a user, and edit a user
  • Analyze the pre-installation OS/networking requirements prior to installing the Falcon sensor
  • Apply appropriate settings to successfully install a Falcon sensor on Windows, Linux, and macOS
  • Uninstall a sensor
  • Use Host Management to verify sensor properties
  • Explain the different types of sensors reports and what each report provides
  • Recognize issues with the basic configuration requirements in the system environment or Falcon components
  • Determine the appropriate sensor update policy settings and related general settings to control the update process
  • Determine the appropriate group assignment for endpoints and understand how this impacts the application of policies
  • Describe policy types, components, applications, and workflows
  • Define precedence, groups, and best practices
  • Determine the appropriate prevention policy settings for endpoints and explain how this impacts security posture
  • Apply options required to manage quarantined files
  • Assess the IOC settings required for customized security posturing and to manage false positives
  • Interpret business requirements to allow trusted activity and resolve false positives and performance issues
  • Write an effective file exclusion rule using glob syntax
  • Apply file pattern exclusions to groups
  • Demonstrate how to manage exclusion rules
  • Create custom indicator of attack (IOA) rules to monitor behavior that is not fundamentally malicious
  • Describe what a containment policy does
  • Based on security workflow requirements, configure an allowlist while the network is under containment with the appropriate IP addresses
  • Apply roles and policy settings, and track and review Falcon Real Time Response audit logs to manage user activity

Who is the instructor for this training?

The trainer for this FHT 200: Falcon Platform for Administrators (CrowdStrike) Training has extensive experience in this domain, including years of experience training & mentoring professionals.

Reviews