Workforce Development / PAN EDU-270: Cortex XSIAM: Security Operations and Automation

PAN EDU-270: Cortex XSIAM: Security Operations and Automation

This four-day instructor-led training enables you to deploy and manage Cortex XSIAM, Palo Alto Networks' AI-driven security operations platform. 

Length: Four days
Price: $5,000 CAD

Register Now

Who Should Attend:

  • Cybersecurity analysts and engineers 
  • Security-operations (SecOps) 
  • CERT/CSIRT/XSIAM engineers 
  • SOAR engineers 
  • Managed security service providers (MSSPs) 
  • Service delivery partners 
  • System integrators 
  • Professional services engineers 
Expertise Icon

Describe the architecture and components of the Cortex XSIAM 
Describe how Cortex XSIAM consumes and ingests data from various sources 
Deploy Cortex XDR agent installation packages and its essential configurations 
Understand how to use Cortex XSIAM to analyze an environment from the outside, which enhances the existing internal access to the environment provided with an installed agent 
Understand the onboarding process within Cortex XSIAM 

Expertise Icon

Customize dashboards tailored to the unique needs of security operations centres (SOCs) 
Grasp the essentials of security analytics and correlations, discerning their role in effective threat detection and explore the critical role of automation in cybersecurity, understanding its impact and reaping the benefits 
Delve into the critical realm of data models, gaining essential knowledge on their core components and the intricate process of mapping events onto them 
Understand cybersecurity incident handling, covering categorization, investigation techniques and best practices 

Description

Cortex Extended Security Intelligence and Automation Management (XSIAM) is Palo Alto Networks’ AI-driven security operations platform for the modern SOC. This four-day instructor-led training enables you deploy and manage Cortex XSIAM to collect and ingest various data sources, logs and alerts, to drive machine learning for natively autonomous response actions, such as cross-correlation of alerts and data, detection of highly sophisticated threats and automated remediation based on native threat intelligence and attack surface data. 

Topics Covered:

  • Intro to XSIAM 
  • Elements of security operations 
  • Maturity model 
  • Agent deployment and configuration 
  • Alerting and detection 
  • Data source ingestion 
  • Visibility Analytics 
  • Attack surface management 
  • Automation 
  • Data model 
  • Incident handling/SOC 

Prerequisites:

  • Familiarity and experience in the SOC environment with enterprise product deployment, networking and security concepts 
  • Completion of Cortex XSIAM Foundational Concepts is highly recommended 
Complete the form to get more information on this course:
Complete the form to get more information on this course:

Related Courses:

View All
Palo Alto Networks EDU-260: Cortex XDR: Prevention and Deployment
videoIcon
Updated on Mar 17, 2025 Palo Alto Networks EDU-260: Cortex XDR Palo Alto Networks EDU-260: Cortex XDR: Prevention and Deployment
webinar 1 min
This course enables you to take steps to prevent attacks on your endpoints.
Show preview Hide preview
From
CDW
PAN EDU-380: Cortex XSOAR: Automation and Orchestration
videoIcon
Mar 17, 2025 PAN EDU-380: Cortex XSOAR PAN EDU-380: Cortex XSOAR: Automation and Orchestration
webinar 1 min
This course will help a SOC, CERT, CSIRT or SOAR engineer to start working with Cortex XSOAR integrations, playbooks, incident-page layouts and more.
Show preview Hide preview
From
CDW
View All
View All