course overview
Overview
This instructor-led course teaches you how to use the Incidents pages of the Cortex XDR management console to investigate attacks. It explains causality chains, detectors in the Analytics Engine, alerts versus logs, log stitching, and the concepts of causality and analytics.
You will learn how to analyze alerts using the Causality and Timeline Views and how to use advanced response actions, such as remediation suggestions, the EDL service, and remote script execution.
Multiple modules focus on how to leverage the collected data. You will create simple search queries in one module and XDR rules in another. The course demonstrate how to use specialized investigation views to visualize artifact-related data, such as IP and Hash Views. Additionally, it provides an introduction to XDR Query Language (XQL). The course concludes with Cortex XDR external-data-collection capabilities, including the use of Cortex XDR API to receive external alerts.
Audience
Skills Gained
Successful completion of this instructor-led course with hands-on lab activities should enable participants to:
Prerequisites
Participants must have completed EDU-260 (Cortex XDR: Prevention and Deployment).
Outline
Palo Alto Networks® courses deliver the knowledge and expertise necessary for enterprises to effectively protect our way of life in the digital age. The training covers Next-Generation Security Platform expertise necessary to prevent successful cyberattacks and safely enable applications.
We provide training for every solution in Palo Alto Networks product portfolio. Our Palo Alto Networks trainers bring to the classroom decades of extensive experience. All Palo Alto Networks courses we deliver consist of Lectures, Labs, and Discussions and are available either in a classroom setting or as virtual live courses.
Palo Alto Networks provides an array of technical courses covering the innovative products, solutions and technologies comprising our Security Operating Platform. Course formats include: public, private and virtual classes as well as free digital learning courseware.
Authorized Palo Alto Networks training from CourseMonster provides the next-generation firewall knowledge you need to secure your network and safely enable applications.
Palo Alto is highly regarded in IT circles because of its vaunted firewall technology, making its tech a must-know for any IT Security pro.
Palo Alto certification course enables you to master a wide variety of enterprise-level next-generation firewalls and the associated Security features for your network. Palo Alto next-generation firewalls are designed to deploy applications safely and prevent them from modern threats and vulnerabilities.
Due to the uncertainty of the spread of the Coronavirus outbreak Exclusive Networks in line with many of our business partners are postponing ‘face to face’ training courses. All Palo Alto Networks courses currently in our training schedule will now be delivered virtually. Covering all aspects of the Security operating platform, our certified and authorised instructors will teach a broad range of cyber Security topics, ensuring you are fully prepared to take exams to achieve formal, industry recognised certifications. Learn about each of the Palo Alto training courses provided through Exclusive Networks.
Popular courses are Palo Alto Networks Firewall 9.x Essentials Configuration and Management 210
If you need training for 3 or more people, you should ask us about onsite training. Putting aside the obvious location benefit, content can be customised to better meet your business objectives and more can be covered than in a public classroom. Its a cost effective option. One on one training can be delivered too, at reasonable rates.
Submit an enquiry from any page on this site, and let us know you are interested in the requirements box, or simply mention it when we contact you.
All $ prices are in USD unless it’s a NZ or AU date
SPVC = Self Paced Virtual Class
LVC = Live Virtual Class
Our clients have included prestigious national organisations such as Oxford University Press, multi-national private corporations such as JP Morgan and HSBC, as well as public sector institutions such as the Department of Defence and the Department of Health.
