Palo Alto Networks Cortex XDR 2:
Prevention, Analysis & Response
(EDU 260)
Technical Training | 17-19 November

Due to the Corona measures all trainings will be organised online.

Date: 17-19/11/2021
Duration: 3 days
Format: Online instructor-led training with hands-on labs
Timing: every day from 9am to 5pm
Price: $2340 excl. VAT
(for pricing in Euro or PAN training credits, please send an email to training@exclusive-networks.be)

Course Description
This course is three days of instructor-led training that will help you to:

  • Differentiate the architecture and components of Cortex XDR
  • Describe the threat prevention concepts for endpoint protection
  • Work with the Cortex XDR management console
  • Differentiate exploit and malware attacks and describe how Cortex XDR blocks them
  • Perform appropriate response actions
  • Describe the Cortex XDR causality analysis and analytics concepts
  • Triage and investigate alerts, and manage incidents
  • Manage Cortex XDR rules and investigate threats through the Query Center

Objectives
Successful completion of this instructor-led course with hands-on lab activities should enhance the student’s understanding of how to install Cortex XDR agents, manage content updates, configure and manage Cortex XDR from its management console to protect endpoints against exploits and malware-driven attacks, understand fileless attacks and behavioral threat protection to stop them, build policy rules and profiles, and work with incidents and alerts including triaging, analyzing,and investigating, and then respond to prevention and network alerts.

Modules
1. Cortex XDR Family Overview
2. Working with the Cortex Apps
3. Getting Started with Endpoint Protection
4. Malware Protection
5. Exploit Protection
6. Exceptions and Response Actions
7. Behavioral Threat Analysis
8. Cortex XDR Rules
9. Incident Management
10. Search and Investigate
11. Basic Troubleshooting 

Target Audience
Cybersecurity analysts and security operations specialists

Prerequisites
Participants must be familiar with enterprise security concepts.

Trainer
This course is given by Steven Eerdekens a certified Palo Alto Networks trainer with several years of experience and awards.
REGISTRATIONS ARE CLOSED
Exclusive Networks BeLux, A. Stocletlaan 202, 2570 Duffel