FALCON 200: Falcon Platform for Administrators
FALCON 200: Falcon Platform for Administrators is a one-day course designed to build expertise in managing and optimizing the CrowdStrike Falcon® platform. Through hands-on exercises, participants will learn essential administrative functions, including sensor deployment, policy configuration, and user management. The course equips system administrators and security engineers with the practical skills needed to monitor sensor health, manage detection capabilities, and implement effective endpoint protection policies.
Course Highlights:
- Deployment and management of operating system (OS)-specific Falcon sensors with verification of sensor health
- Configuration of prevention policies, user access controls, and host grouping hierarchies
- Management of indicator of compromise (IOC) settings, exclusions, and false positives
- Implementation of quarantine management and containment policies
- Monitoring and reporting of sensor coverage and updates
