Course Overview
Security teams can’t detect and stop active attacks quickly. Even though they’ve deployed countless security tools, they lack the enterprise-wide visibility and deep analytics needed to find threats. These siloed tools generate endless alerts and force analysts to pivot from console to console to verify threats, resulting in missed attacks and incomplete investigations. Faced with a shortage of cybersecurity professionals, teams must simplify operations. Cortex XDR™ defines the new category for extended detection and response that integrates endpoint, network, and cloud data to stop sophisticated attacks. As the market’s first and leading XDR category product, Cortex XDR unifies prevention, detection, investigation, and response in one platform for unrivaled security and operational efficiency. XDR stitches together data from the endpoint, network, and cloud in a robust data lake. Applying advanced machine learning and analytics, it identifies threats and benign events with superior accuracy and gives analysts contextualized information, simplifying and accelerating investigations
Course Objectives
- Understand the difference between traditional anti-virus and Advanced Endpoint Protection solutions
- Explore the difference between machine learning prevention and traditional signature- based detection.
- Explore the unique features of Cortex XDR
- Total endpoint control through a policy-based cloud architecture
- Unified Incident Response capabilities and built-in workflow
- Incorporate your existing Palo Alto Networks Deployment
- Leverage Cortex Data Lake for a single point of log forwarding
- Feed data from firewalls and endpoints alike for maximum security coverage
Who Should Attend?
Security Administrators, Security Engineers, and Security Managers
- Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
- Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
- Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
- Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
- Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
- Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.
Agenda
- Emerging Challenges in Security Operations
- Use Case: Endpoint Protection
- Use Case: Threat Detection
- Use Case: Investigation & Response
- Use Case: Managed Threat Hunting
- Use Case: Managed Detection & Response
- CORTEX XDR Demo