This meeting was a technology check-in that included a presentation on Fortinet's Security Operations Center (SOC) as a service. The SOC service provides 24/7 monitoring of security logs. It uses FortiAnalyzer for log analysis and FortiSOAR for automation, with human review of alerts. The service is a subscription that is eligible for E-rate category two funding. It is priced per FortiGate model, and a 400E model would cost $5,400 per year at list price.
The meeting also covered other topics including:
- Log Retention and Analysis: The SOC service includes cloud-hosted FortiAnalyzer, which offers better log analysis than FortiGate Cloud and can correlate multiple log entries. Log retention is about a year. Extra log storage is not category two eligible.
- Other Fortinet Products: The SOC service is designed for FortiGate firewalls, but can be used with FortiClient. It complements FortiEDR. FortiSASE and FortiSIM were also mentioned as other products.
- Alerts and Support: The SOC service has SLAs for response times, with email for low/medium alerts, and phone calls for critical issues. Customers can use a portal to view alerts, chat with engineers, and make service requests.
- Brainstorm Conference: The group discussed the upcoming Brainstorm conference, where Sarah will present on her transition to a Fortinet network.
- Verkada Door Access: Matt Foley shared an issue with a Verkada door access camera that required a reboot to apply an update.
- Infinite Campus: The group discussed the online registration (OLR) system in Infinite Campus, specifically how to translate parent responses in Spanish.
- E-rate Program: There is a case at the Supreme Court regarding the constitutionality of the E-rate program.
- AI Tool: Scott mentioned using Google's Notebook LM, an AI tool, to summarize tech notes and board minutes. He may share an AI-generated podcast of the meeting.
- Scheduling: The group discussed scheduling a follow-up meeting for December 23rd.
- E-rate Updates: Scott is providing E-rate updates to schools who purchased the SE service, and including free and reduced lunch data in emails and tickets.
Welcome everybody to the December 19th edition of Technology Check-In. This will be our last meeting here for year. You know, next time we'll meet, it'll 2025. So woohoo on that particular part it so this week, actually all kind started off with one school districts said they were going apply E-rate category two SOC as a service and I didn't believe would qualify he confirmed did through usac And figured maybe we better know about i uh invited here. Mr. Troy McDermott from Fortinet, sales se I'm turn over you, Troy, let you take there. All right. Well, thanks, Scott. Yeah, quick introduction guys. haven't met yet, but my name is McDermott, an engineer Fortinet. I've been little years, prior that, was at Fortinet reseller 20 years or so. thought knew pretty well until got realized there's lot more than even what thought. Even in, still learning new stuff it. But yeah, any questions guys have, can send them way. work Jason Slaughter. A may name. He are teamed together in Iowa. We cover schools also JP Seals, another account manager covers some other schools. out Dubuque, basically car. travel your neighborhood point another. always glad stop answer questions. share screen talk service. I'll make sure this, should get right monitor shared there Can see logo? Not yet mine. now can. Okay. real quick, we're talking SOX services are, course, start end slide deck. Socks abbreviation throw around bunch. It's Security Operations Center isn't really product. a, it's us providing call staff augmentation. 24 by 7 engineers watch security logs firewall sort good bad unimportant important urgent only things matter. perfect world, we'd have go team people staffed seven. That's just not realistic most companies world especially K-12. something offer way sold, subscription sits under two. 100% eligible. Under Managed Internal Broadband Systems. won't USAC don't generate these alerts, least Hopefully someday come rest well. PowerPoint slides. bludgeon anything like that. show couple highlights, then demo portal use interact. engineers, if find anything, they've escalation process SLA log into see. before started, related want that? question. If subscribe obviously. foreign nets seven day free retention Mm-hmm. does when include additional this? included cloud hosted instance Florida Analyzer Which advanced analysis platform. customers using FortiGate Cloud, that's you're where goes you've days um Log along analysis. thing too, logs, information logs. Case is, someone tries website, looks atomically. website not? Looks allowed, denied. Okay, made decision. move on. It doesn't back look device has done past. do computer makes short connection fairly innocent looking about. That through, allowed firewall. analyzer knows enough like, okay. once, decide bad. keep doing odd small connections kinds websites sudden bit concerning. act information. correlate multiple entries overall behavior problem, individual not. we've already Forta Analyzer. either on-prem cloud. great. need cloud-based instance. One run comes default amount logging per day, depending model FortiGate, 200 meg gig. includes base logging. turned up 11, Ideally, adding storage capability ingestion because price how much store. day. so… idea accurate number sending handle clear. Let's say gig 1.2. very company booted extra license limit. Because ever event, probably police hardcore Basically, over, give message nag hey, might more. away. really, row. Then harder. you'd let's had question Ford called tech support. When they'd oh, hey. licensing help Now schools, rare Saturdays Sundays. leeway. unlikely overrunning week Overall, accurate. now, widget dashboard many That'll need. long yes, features. full access analyzer. getting couldn't quite swing Now, logging, product, product you'll year, think, Fort Cloud. addition Does Yeah. up, feel free, interrupt me. fun conversation rather me talking. Scott windy It'll answers relevant. main behind alert fatigue, anybody too Has enjoy logs? Is attacks simpler? skip basically, middle here, four client. forensics running endpoints. complimentary EDR, aimed mostly FortiGate. Sassy hear future. K-12s now. works great highly distributed workforces of, everyone set firewalls seen direction. anyone definitely know. while. wordy. showing curtain, eat own dog food. products equipment down Your in. The step pyramid, narrow important, Fortasar automation orchestration runs correlates beyond between different messages. Fortisor pull DNS reputation whatever IP address threat feeds sources backend try put possible like. happened Where entry site? filters humans serve sanity check Oh, big deal. Or, deal with. So, happens, proverbial comes, say, We've gone stuff. at. incident response will, server infected. We're happened. priced either. they'll alert. desktop doing. offered. way, There's tuning. They recommendations policies create policy block this. value it's, their job. training. inside out. Then, got, think 50% those service, telemetry. coming To able news. Or else elsewhere. common traffic. zoomed look. internet traffic worldwide. these. read. mean, telling 7, three operation centers. old, date suffice fair talent spread across world. somebody awake no after five, who's Beyond setting here's default, clouds data FortiGates flows there, gets sent Fortosaur backends pros, easy. site. nice Cons that… stored huge downside mention storage. Storage expensive four-day site 10, unlikely. takes cost effective premise cloud, Another deployment instead being virtual machine us. VM you. on-prem. wouldn't necessarily could Azure, AWS, hardware analyzers. VMs. specialized ASICs gate. advantage hardware. Sometimes network servers. guessing us, both. problem Any far anything? moving mean… Go ahead, Sarah. speaking Okoboji. reality year five. money, lot. pricing module got… 401, X dollars. 601, 901, less. gate dollars Do Officially, list tell, I'd quote times CDW's What size Okoboji? 400e. 400E, idea, price, educational discount $5,400 Cloud storing cheaper having Pretty cheap peace mind vacation sleep night 2 a.m, first person it, morning six questions? rolling partner MSSP type hosting basic requirements. requires 645 later, UTP. hopefully newer 645. not, straightforward requirements SLAs everything. email, critical. phone tree calling answers. But, low medium. email within 90 minutes, hours worth mentioning email. open portal. incident, chat who found incident. ask okay, grabbed desktop. seeing Should chance forth actual responses requests help. educate Tell level criteria treat lower thing. SOC. You've normal support they're functioning correctly, strictly alerts. ISO 27001 certified. anyone's thinking 470 include. again, Earth provides ones created software generating sorting knowing why generated love competition, keeps competitive working hard can, certified things. them. line. lock else, solution. specify cert 27001. whole said, straightforward. Most Fortic cloud? pages zooming see, code onboarding. yep, customer. provider. San Jose Vancouver closest Hit next. serial numbers entitlement click managed misspell biggest demo. certain subnets wanted don't. guest subnet. Maybe devices control anyway. internal ones. By subnets. contacts emails calls. Here's paths. bunch gates, needs alerts exclude cares one, care guests, does. granular escalation. everywhere. basic. notes add review. up. then, done, onboarding experience everything onboarded system. once Let switched one. tell monitored. client endpoints, users. events, escalated gives what's map want. command control. its seen… detections. saying oh blocked fact blocking somewhere communicate though comment window want, saw remediated. further yet? severity. SLA. events indicators address, host enrichment means looked confident indicator compromise. which endpoints subject users download report lookups depth every single entry. causing joke typically spend 10 resolved. escalated. confirmed. status And, dates created, modified, page all? requests. requests, from, added high availability. update matrix. month report, request ideally, reports hit anytime will… Grab bring example reports. Are today? aware anybody. Matt Foley tried install version he's anymore. Oh weekly past week. Just away someplace. renders ones, 30 days, particularly day? end? uptick fraudulent shipping Christmas close. tough minute. watching closely. dashboards worry easy value. These finding worse, known. helps sometimes powers board signers match Forensic specific hunting built decline eligible wants to, meet offline Like educated sorts making life easier. intending provide agency, 40 EDR liquid networks signed consult? they. sign endpoint fancy wrap separate, since Liquid. RSA EDR. combining middle. could, separate source SIM together. assume coming. suck. individually, end, Fortisolor Liquid Fortisim correlating have… valuable. times, maturity timeline budget increase timeline. Years ago, money afford subscriptions. subscriptions ideal future gate, endpoint, servers correlated system sim Fortisolar In premise. Sam fit duplicating wheel aren't law, solution road, ideally server, similar experience, Except portigade calls, calls case Yep, clients. Phil's example, less $6,000, mean can't hire employee sit For benefit sold 12-month subscription. gets, theory ERA left, going. doesn't, associated. ongoing trying Sounds good. Anyone will. Alrighty, Kerry Nunn. Thank always, for… sharing yep questions, leave contact touch Troy. his directly, unfortunately, hates speed dial all. handful God known answer. hang says, want? anytime, anytime. happy thanks Scott, opportunity thank giving time. appreciate reach provide. much. Thanks. Bye. purchased SE lists updates. No surprise i've hidden agenda i'm copying accounts ticket track few missing. bear forms catching proactive side S's yet. hold on, shortly. Also, forget, public reduced lunch Pam Jacobs requested sent, starting release. deuce tickets couple, ahead about, remember, soapbox Brainstorm registration Wisconsin Dells march conference designed specifically K-12 directors technicians k12 Their motto 4K12 4K. tech. six. Sarah's presentation Jake Sheets, earlier, brainstorm Aiden's. Did pronounce right? Dave Jabronski? her original Give second. sorry. waiting Phil. break ready, My deepest apologies Sorry. No, ahead. call. forgot muted. apologies. conference, think. On guess Phil, you? just… busy season. finally hired superintendent Vending approval. We'll goes. sounds Sarah, Um… plans. plans already. ESSER end. anything. Had today yesterday pushed text space so, while anyway, forward brainstorm. never fun. Interesting. learn learned lot, latter career thanks. presenting Sarah? transition Aruba user-friendly me, probably, English teacher, then. Fair enough. assuming sponsored Fortinet? sponsored. co-presenting Yep. Sarah story part. encouraged plus hurt lead presenter Nice. motivation, actually. good, conversation. So… Foley, the, putting door everybody's Bob's fobs rolled intercoms busy. Who system? bracada. went tune. goof iPads desk stations ricotta cameras, access. issue today. mind. Vercata door, buzz camera, intercom system, answerable iPad. clicked speaker icon immediately why. And… rebooted, showed reboot. apparently camera pending. automatically required reboot apply. issue, Verkada Command Center. vendors installed. switch tonight. So. interesting. tomorrow. luck right, group here? curiosity, Matt, Infinite Campus? Yes. OLR, familiar OLR? very, bit. given task a… ELA teacher specialist, her. Spanish Spanish, five families understand internally convert Spanish. Correct. parents converted topic discussing how, translate parent translates people, note Of listening type, hadn't find… Supreme Court determine e-rate program constitutional There potential possibility see… hotspot action stories submit survey link. taking. See, post fill link paperwork decision devastating, though, filed complaint unconstitutional. assumption, telephone collecting funds from. wrong texted she's back, positive. She asking minutes she'll pick quick. Oh. curious database she Home language OLR. her? middleman. fantastic. She'll out, spare fun, play Google Notebook LM. local containerized AI. cool feature creates podcast based summary closed captioning. sees captioning, captioning web page. hidden. search engine, wasn't notes. talked listen forth, AI person's goes, uh-huh. Wow. technology challenge admit, 12-minute meetings had. knowledge summarized house file bill, yay bill. notebook lm amendments Next Thursday. publish far. half awesome upload data. outside private. project, in-depth uh. today, unless sure, 26th? I… Six. 25th? am 25th, scheduled. 26th. Two, wife. officially days. wife 23rd. 27th following 30th 31st. problem. plan 23rd you… yeah privately same righty. work. guess… hope holiday season There'll long, accurate, second, second then… 9th. scheduled ninth, itself.