FireEye Helix: Mar 2-6

This primer on FireEye Helix covers the Helix workflow, from triaging Helix alerts, creating and scoping cases and using Helix and Endpoint Security tools to conduct investigative searches across the enterprise. Hands-on activities include writing MQL searches as well as analyzing and validating Helix, Network Security and Endpoint Security alerts.

Event Information

Training provided by: FireEye

  • START DATE: March 2, 2020 9:00am PDT
  • END DATE: March 6, 2020 5:00pm PDT
  • LOCATION: FireEye 601 McCarthy Blvd. Milpitas, Ca 95035

- Expertise On Demand (EoD) credits will be accepted


Completion of three FireEye web-based training courses prior to the instructor-led portion of the course: Network Security for Helix, Central Management for Helix, Endpoint Security for Helix. Details on these courses will be provided to registrants of the FireEye Helix instructor-led training course. Students should have a working understanding of networking and network security, the Windows operating system, file system, registry, and use of the CLI.

Technical Requirements

Students must have access to a laptop running one of the following browsers: Chrome (latest), Firefox (latest), or Internet Explorer (10 or greater). Wireshark is recommended.

FireEye classes include hands-on activities in the FireEye Training Lab. Important: Students must be able to connect to the FireEye Training Lab. Please verify connectivity for the labs prior to the first day of class by visiting and You should see the lab login screens.

The lab is a protected environment and requires a login for access. Once registered for class, students will receive their training lab credentials via email. These credentials will not be activated until the first day of class, and will expire upon class completion. Please note that any attempts to log in prior to class commencement will fail.

Interested in this class?

To request pricing and registration information, send us an email.

Thank you.