Palo Alto Cortex XSOAR: Engineering Security Automation Solutions

What's In It For Me

The Palo Alto Networks Cortex XSOAR: Engineering Security Automation Solutions course is a four-day instructor-led training with a blend of lectures and hands-on labs. This training will enable students to use Cortex XSOAR to:

• Conduct incident investigation and response activities on a phishing campaign

• Create custom dashboards and generate reports

• Install multiple engines and configure a load balancing group

• Use built-in and external integrations to ingest incidents and automate security processes • Plan and implement an automation use case by building playbooks and automation s

Course Overview

Scope

  • Course level: Advanced
  • Course duration: 4 days
  • Course format: Lecture and hands-on labs
  • Platform support: Cortex XSOAR



Training Type

Full-Time


Who Should Attend
  • SOC / SIEM / Automation Engineers
  • MSSPs and Service Delivery Partners working with XSOAR



Course Duration

4 days


Course Outline

Course Modules

  1. XSOAR Overview
  2.  Incident Management
  3. Threat Intelligence
  4. Analyst Investigations
  5. Dashboards, Reports, and Timers
  6. Integrations and Content Management
  7. Architecture
  8. Use Case Planning and Implementation
  9. Playbook Development
  10. Automation s






Course Objectives

This training is designed to enable a SOC, CERT, CSIRT, or SOAR engineer to start working with Cortex XSOAR integrations, playbooks, incident-page layouts, and other system features to facilitate resource orchestration, process automation, case management, and analyst workflow.

The third module of the course demonstrates a complete playbook-development process for automating a typical analyst workflow to address phishing incidents. This end-to-end view of the development process provides a framework for more focused discussions of individual topics that are covered in subsequent modules.


Pre-requisites

Participants should have a basic understanding of:

  • Networking concepts, such as identifying private IPs and domains
  • Cybersecurity concepts, such as Indicators of Compromise
  • Navigating Windows and Linux environments using the GUI and CLI



Medium of Instruction & Trainer

English


Price
Course Fee Payable
Original Fee Before GST With GST (9%)
Course Fee $3,332.00 $3,631.88

Please note that prices are subjected to change.
Back to Catalogue →
Next Available Schedules
Available Seats:
Course Name:
Category:
Delivered By:
Trainer:
Venue:
Language:
Session Dates:
Registration Date:
From To