Cortex XSIAM:
for Security Operations and Automation
PAN EDU-270 training course
Contents EDU-270 training course
The Cortex XSIAM training course is a comprehensive hands-on lab experience that delves into Palo Alto Networks’ industry-leading security incident and asset management platform.
This 4-day course, spread over two weeks, offers participants a practical learning environment to explore the core functionalities of Cortex XSIAM.
Throughout the course, participants will learn to:
Deploy, configure, and install XDR agents: Set up and manage Agent Groups and profiles effectively.
Investigate incidents: Analyze assets and artifacts while understanding the causality chain of incidents.
Create correlation rules: Leverage XQL to query logs, analyze incidents, and optimize workflows using available tools.
You can download the complete datasheet with information about the training course here.
Objectives
By the end of this course, participants will have mastered the core elements of Cortex XSIAM, enabling them to:
Efficiently handle security incidents and optimize detection.
Improve the orchestration of cybersecurity operations through automation and advanced strategies.
Develop the ability to investigate, analyze, and respond to complex security threats.
Prerequisites
Participants are expected to have a foundational understanding of enterprise product deployment, networking, and security concepts.