TRENDS is authorized to promote and deliver Palo Alto courses in partnership with Red Education. Palo Alto Logo is a registered trademark of Palo Alto Networks. All rights reserved.
Cortex XDR 2: Prevention, Analysis, and Response
Schedule
Start | End | Duration | Location | Details |
---|
Course Details
Cortex XDR 2: Prevention, Analysis, and Response
Course Code: EDU 260
Duration: 3 Days
Prerequisite:
Participants must be familiar with enterprise security concepts.
Course Description:
This course is three days of training that will help you to:
• Differentiate the architecture and components of Cortex XDR
• Describe the threat prevention concepts for endpoint protection
• Work with the Cortex XDR management console
• Differentiate exploit and malware attacks and describe how Cortex XDR blocks them
• Perform appropriate response actions
• Describe the Cortex XDR causality analysis and analytics concepts
• Triage and investigate alerts, and manage incidents
• Manage Cortex XDR rules and investigate threats through the Query Center
Course Objective:
Successful completion of this course with hands-on lab activities should enhance the student’s understanding of how to install Cortex XDR agents, manage content updates, configure and manage Cortex XDR from its management console to protect endpoints against exploits and malware-driven attacks, understand file less attacks and behavioral threat protection to stop them, build policy rules and profiles, and work with incidents and alerts including triaging, analyzing, and investigating, and then respond to prevention and network alerts.
Intended Audience:
Cybersecurity analysts and security operations specialists
Course Outlines:
1. Cortex XDR Family Overview
2. Working with the Cortex Apps
3. Getting Started with Endpoint
4. Protection
5. Malware Protection
6. Exploit Protection
7. Exceptions and Response
8. Actions
9. Behavioral Threat Analysis
10. Cortex XDR Rules
11. Incident Management
12. Search and Investigate
13. Basic Troubleshooting