Skip to main Content

Palo Alto Networks: Cortex XSIAM for Investigation and Analysis

  • Kursuskode PAN-XSIAM-IA
  • Varighed 2 dage

Leveringsmetoder

Firma kursus Pris

Ring venligst

Anmod om gruppetræning Køb

Go to:

Leveringsmetoder

Kurset er tilgængeligt i følgende formater:

  • Firma kursus

    Et lukket firma kursus

  • Åbent kursus

    Traditionel klasserumsundervisning

  • Åbent kursus (Virtuelt)

    Live klasserumsundervisning du tilgår virtuelt

Anmod om dette kursus Med en anden leveringsløsning

Beskrivelse

Toppen

XSIAM is the industry's most comprehensive security incident and asset management platform, offering extensive coverage for securing and managing infrastructure, workloads, and applications cross multiple environments.

Throughout this course, you will explore the key features of Cortex XSIAM.

This course is designed to enable you to:

- Investigate incidents, analyze key assets and artifacts, and interpret the causality chain.

- Query and analyze logs using XQL to extract meaningful insights.

- Utilize advanced tools and resources for comprehensive incident analysis.

Company Events

These events can be delivered exclusively for your company at our locations or yours, specifically for your delegates and your needs. The Company Events can be tailored or standard course deliveries.

Kursusdato

Toppen

Kontakt os Til datoer

Anmod om gruppetræning Datoer i andre lande

Målgruppe

Toppen

SOC/CERT/CSIRT/XSIAM analysts and managers, MSSPs and service delivery partners/system integrators, internal and external professional-services consultants and sales engineers, incident responders and threat hunters.

mere…

Kursets formål

Toppen

The course is designed to enable cybersecurity professionals, particularly those in SOC/CERT/CSIRT and Security Analysts roles, to use XSIAM.

The course reviews XSIAM intricacies, from fundamental components to advanced strategies and techniques, including skills needed to navigate incident handling, automation, and orchestrate cybersecurity excellence.

mere…

Kursusindhold

Toppen

Course Modules

1- Introduction to Cortex XSIAM

2- Endpoints

3- XQL

4- Alerting and Detection

5- Threat Intel Management

6- Automation

7- Attack Surface Management

8- Incident Handling

9- Dashboards and Reports

mere…

Forudsætninger

Toppen

Participants should have a foundational understanding of cybersecurity principles and experience with analyzing incidents and using security tools for investigation.

mere…

Certificeringstest

Toppen

There is no online exit exam for this course, but there is a related certification: XSIAM Analyst

mere…