-
Please note: At the end of October 2024, Palo Alto Networks announced the restructuring of the existing certification program. Among other things, this has an impact on the previous PCNSA and PCNSE certifications. The PCNSA exam was discontinued on 31.01.2025. Details can be found here.
-
XSIAM is a platform for the management of security incidents and assets. It provides comprehensive coverage for securing and managing infrastructures, workloads and applications in different environments. In this course, you will learn about the key features of Cortex XSIAM.
The course is designed to enable cybersecurity professionals, particularly in the SOC/CERT/CSIRT and security engineering fields, to utilize XSIAM. The course addresses the intricacies of XSIAM, from basic components to advanced strategies and automation techniques, including the skills required for incident handling, log source optimization, and orchestrating cybersecurity excellence.
-
Course Contents
-
- Introduction to Cortex XSIAM
- Elements of Security Operations
- Maturity Model
- Agent Deployment and Configuration
- Data Source Ingestion
- Visibility
- Data Model
- Analytics
- Alerting and Detecting
- Attack Surface Management
- Automation
- Incident Handling / SOC
You will receive the original course documentation by Palo Alto in English language as an e-book.
-
Target Group
-
SOC/CERT/CSIRT/XSIAM engineers and managers, MSSPs and service partners/system integrators, internal and external professional services consultants and sales engineers, incident responders and threat hunters.
-
Knowledge Prerequisites
-
The participants must be familiar with the provision of enterprise products as well as network and security concepts.
-
Course Objective
-
This course is designed to enable you to:
- Deploy, configure and install XDR agents and configure agent groups and profiles
- Investigating incidents, examining assets and artifacts and understanding the causal chain
- Create correlation rules, use XQL to query logs and analyze incidents using available tools and resources
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.-
Please note: At the end of October 2024, Palo Alto Networks announced the restructuring of the existing certification program. Among other things, this has an impact on the previous PCNSA and PCNSE certifications. The PCNSA exam was discontinued on 31.01.2025. Details can be found here.
-
XSIAM is a platform for the management of security incidents and assets. It provides comprehensive coverage for securing and managing infrastructures, workloads and applications in different environments. In this course, you will learn about the key features of Cortex XSIAM.
The course is designed to enable cybersecurity professionals, particularly in the SOC/CERT/CSIRT and security engineering fields, to utilize XSIAM. The course addresses the intricacies of XSIAM, from basic components to advanced strategies and automation techniques, including the skills required for incident handling, log source optimization, and orchestrating cybersecurity excellence.
-
Course Contents
-
- Introduction to Cortex XSIAM
- Elements of Security Operations
- Maturity Model
- Agent Deployment and Configuration
- Data Source Ingestion
- Visibility
- Data Model
- Analytics
- Alerting and Detecting
- Attack Surface Management
- Automation
- Incident Handling / SOC
You will receive the original course documentation by Palo Alto in English language as an e-book.
-
Target Group
-
SOC/CERT/CSIRT/XSIAM engineers and managers, MSSPs and service partners/system integrators, internal and external professional services consultants and sales engineers, incident responders and threat hunters.
-
Knowledge Prerequisites
-
The participants must be familiar with the provision of enterprise products as well as network and security concepts.
-
Course Objective
-
This course is designed to enable you to:
- Deploy, configure and install XDR agents and configure agent groups and profiles
- Investigating incidents, examining assets and artifacts and understanding the causal chain
- Create correlation rules, use XQL to query logs and analyze incidents using available tools and resources
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.
Online Training
Trainer language English