Palo Alto
Home Palo Alto Palo Alto

Cortex XDR 2: Prevention, Analysis, and Response (EDU-260)

Palo Alto Networks Cortex XDR is the world’s first detection and response app that natively integrates network, endpoint and cloud data to stop sophisticated attacks. Cortex XDR accurately detects threats with behavioral analytics and reveals the root cause to speed up investigations. Tight integration with enforcement points accelerates containment, enabling you to stop attacks before the damage is done.

Firewall Essentials: Configuration and Management (EDU-210)

Palo Alto Networks next-generation firewalls are architected to safely enable applications and prevent modern threats. Their approach identifies all network traffic based on applications, users, content and devices, and lets you express your business policies in the form of easy-to-understand security rules.

Flexible deployment options and native integration with their next-generation security platform extend the policy enforcement and cyberthreat prevention to everywhere your users and data are located: in your network, on your endpoints and in the cloud.

Firewall: Firewall Improving Security Posture and Hardening PAN-OS Firewalls (EDU-214)

Firewall 10.0: Improving Security Posture and Hardening PAN-OS (EDU-214) course is three days of instructor-led training that will help you to:
  • Ÿ Determine the efficacy of your current security policies
  • Ÿ Develop workflows for managing your security posture
  • Ÿ Identify rule usage across security policy sets
  • Ÿ Modify your existing policy set to implement Security Best Practices
  • Ÿ Monitor network traffic using the interactive web interface and firewall reports
  • Ÿ Utilize tools such as the BPA tool to further understand your environment

Firewall: Troubleshooting (EDU-330)

Palo Alto Networks next-generation firewalls are architected to safely enable applications and prevent modern threats. Their approach identifies all network traffic based on applications, users, content and devices, and lets you express your business policies in the form of easy-to-understand security rules. Flexible deployment options and native integration with their next-generation security platform extend the policy enforcement and cyberthreat prevention to everywhere your users and data are located: in your network, on your endpoints and in the cloud.

Palo Alto Networks: Cortex XDR 3.0: Investigation & Response (EDU-262)

This instructor-led course teaches you how to use the Incidents pages of the Cortex XDR management console to investigate attacks. It explains causality chains, detectors in the Analytics Engine, alerts versus logs, log stitching, and the concepts of causality and analytics. You will learn how to analyze alerts using the Causality and Timeline Views and how to use advanced response actions, such as remediation suggestions, the EDL service, and remote script execution. Multiple modules focus on how to leverage the collected data. You will create simple search queries in one module and XDR rules in another. You will learn how to use specialized investigation views to visualize artifact-related data, such as IP and Hash Views. Additionally, in introduction to XDR Query Language XQL is provided. The course concludes with Cortex XDR external data collection capabilities, including the use of Cortex XDR API to receive external alerts.

Palo Alto Networks: Cortex XSOAR 6.2: Automation & Orchestration (EDU-380)

The Cortex™ XSOAR 6.2: Automation and Orchestration (EDU-380) course is four days of instructor-led training that will help you:
  • Configure integrations, create tasks, and develop playbooks.
  • Build incident layouts that enable analysts to triage and investigate incidents efficiently
  • Identify how to categorize event information and map that information to display fields.
  • Develop automations, manage content, indicator data, and artifact stores, schedule jobs, organize users and user roles, oversee case management, and foster collaboration

Palo Alto Networks: Prisma Access SASE Security: Design and Operation (EDU-318-LO)

The Prisma Access SASE Security: Design and Operation (EDU-318) course describes Prisma Access Secure Access Service Edge (SASE) and how it helps organizations embrace cloud and mobility by providing network and network security services from the cloud. This course is intended for people in the fields of public cloud security and cybersecurity, or for anyone who wants to learn how to secure remote networks and mobile users.

Panorama: Managing Firewalls at Scale (EDU-220)

Panorama network security management enables you to control your distributed network of our firewalls from one central location. View all your firewall traffic, manage all aspects of device configuration, push global policies, and generate reports on traffic patterns or security incidents — all from a single console. Panorama is available either as a dedicated management appliance or as a virtual machine. In summary, Panorama provides:
  • Streamlined policy management
  • Simplified operations
  • Unparalleled network and threat visibility
  • Flexible deployment options