Successful completion of this instructor-led course with hands-on lab activities should enable you to:
- Describe the architecture and components of the Cortex XDR family
- Use the Cortex XDR management console
- Create Cortex XDR agent installation packages, endpoint groups, and policies
- Deploy Cortex XDR agents on endpoints
- Create and manage exploit and malware prevention profiles
- Investigate alerts and prioritize them using starring and exclusion policies
- Tune Security profiles using Cortex XDR exceptions
- Perform and track response actions in the Action Center
- Perform basic troubleshooting related to Cortex XDR agents
- Deploy a Broker VM and activate the Local Agents Settings applet
- Understand Cortex XDR deployment concepts and activation requirements
- Work with the Customer Support Portal and Cortex XDR Gateway for authentication and authorization
This class is comprised of the following modules:
- Module 1 – Cortex XDR Family Overview
- Module 2 – Cortex XDR Main Components
- Module 3 – Cortex XDR Mangement Components
- Module 4 – Profiles and Policy Rules
- Module 5 – Malware Protection
- Module 6 – Exploit Protection
- Module 7 – Cortex XDR Alerts
- Module 8 – Tuning Policies using Exceptions
- Module 9 – – Response Actions
- Module 10 – Basic Agent Troubleshooting
- Module 11 – Broker VM Overview
- Module 12 – Deployment Consideration
Participants must be familiar with enterprise product deployment, networking, and security concepts.
