Palo Alto ATC Logo

Cortex XDR: Security Operations and Integration

Palo Alto ATC Logo

This three-day course provides comprehensive training on Cortex XDR, Palo Alto Networks' powerful advanced detection and response platform. You will gain practical knowledge in security operations, incident investigation and system optimization to effectively protect modern environments. The course covers the intricacies of XDR, from basic components to advanced strategies and techniques, including the skills required to configure security integrations, develop workflows, manage indicators, and optimize dashboards for improved security operations. Throughout this course, you will learn the key features of Cortex XDR.

Course Contents

  • Course Overview
  • Overview of Cortex XDR
  • Software Components
  • Integrations
  • XQL
  • Detection Engineering
  • System Optimization
  • Dashboards and Reports

E-Book Symbol You will receive the original course documentation from Palo Alto in English language. Optionally, we provide a printed version or a E-Book.

Request in-house training now

Target Group

This course is aimed at SOC/CERT/CSIRT/XDR engineers and managers, MSSPs and service delivery partners/system integrators, security consultants and sales engineers.

Knowledge Prerequisites

Participants should have a sound knowledge of cybersecurity principles, including the concepts of network and endpoint security.

Course Objective

  • Describe the role of Cortex XDR components, including endpoint agents, XDR collectors, NGFWs, and broker VMs, in securing networks and devices.
  • Use XQL to query and analyze logs for effective data collection and threat detection.
  • Design and implement workflows to optimize security operations.
  • Apply external dynamic lists and indicator rules to enforce security policies.

Classroom training

Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!

Online training

You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.

Tailor-made courses

You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
Request in-house training now
PDF SymbolYou can find the complete description of this course with dates and prices ready for download at as PDF.

This three-day course provides comprehensive training on Cortex XDR, Palo Alto Networks' powerful advanced detection and response platform. You will gain practical knowledge in security operations, incident investigation and system optimization to effectively protect modern environments. The course covers the intricacies of XDR, from basic components to advanced strategies and techniques, including the skills required to configure security integrations, develop workflows, manage indicators, and optimize dashboards for improved security operations. Throughout this course, you will learn the key features of Cortex XDR.

Course Contents

  • Course Overview
  • Overview of Cortex XDR
  • Software Components
  • Integrations
  • XQL
  • Detection Engineering
  • System Optimization
  • Dashboards and Reports

E-Book Symbol You will receive the original course documentation from Palo Alto in English language. Optionally, we provide a printed version or a E-Book.

Request in-house training now

Target Group

This course is aimed at SOC/CERT/CSIRT/XDR engineers and managers, MSSPs and service delivery partners/system integrators, security consultants and sales engineers.

Knowledge Prerequisites

Participants should have a sound knowledge of cybersecurity principles, including the concepts of network and endpoint security.

Course Objective

  • Describe the role of Cortex XDR components, including endpoint agents, XDR collectors, NGFWs, and broker VMs, in securing networks and devices.
  • Use XQL to query and analyze logs for effective data collection and threat detection.
  • Design and implement workflows to optimize security operations.
  • Apply external dynamic lists and indicator rules to enforce security policies.

Classroom training

Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!

Online training

You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.

Tailor-made courses

You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
Request in-house training now

PDF SymbolYou can find the complete description of this course with dates and prices ready for download at as PDF.
ExperTeach Identifier: PXSO
Duration & Prices
Prices excl. V.A.T.
Classes in Germany
3 days
€ 2,395
Online training
3 days
€ 2,395
Dates
Only courses in English are listed here.
Click here for courses in German.