Course Code: cortexxdr
Duration: 21 hours
Prerequisites:
  • Knowledge of enterprise security concepts

Audience

  • Security professionals
  • Cybersecurity analysts
  • Administrators
Overview:

Cortex XDR is a detection and response application that integrates network, endpoint, and cloud data natively to prevent and stop threats.

This instructor-led, live training (online or onsite) is aimed at security professionals who wish to learn how to use Cortex XDR in preventing and stopping the occurrence of sophisticated attacks and threats.

By the end of this training, participants will be able to:

  • Understand the architecture and components of Cortex XDR.
  • Create and manage profiles for exploit and malware prevention.
  • Analyze behavioral threats and monitor response actions.
  • Perform basic Cortex app troubleshooting.

Format of the Course

  • Interactive lecture and discussion.
  • Lots of exercises and practice.
  • Hands-on implementation in a live-lab environment.

Course Customization Options

  • To request a customized training for this course, please contact us to arrange.
Course Outline:

Introduction

  • Overview of Cortex XDR
  • Understanding Cortex XDR components

Getting Started with Cortex XDR

  • Setting up Cortex XDR
  • Understanding Cortex XDR management console
  • Understanding policy rules and profiles

Working with the Cortex Apps

  • Overview of the Cortex apps
  • Activating the Cortex XDR lab

Malware Protection

  • Overview of malware profiles and restrictions
  • Configuring and using malware protection modules

Exploit Protection

  • Preventing application exploit
  • Exploitation techniques and defense mechanisms
  • Using exploit protection modules and exploit Profiles

Exceptions and Response Actions

  • Understanding exceptions
  • Tuning policies using exceptions
  • Working with response actions

Behavioral Threat Analysis

  • Understanding detection and response use cases
  • Analyzing behavioral threats
  • Using an analytics engine

Incident Management

  • Using alerts
  • Handling incidents
  • Handling external alerts
  • Alert exclusion and policies

Troubleshooting

  • Methodologies and resources
  • Using troubleshooting tools

Summary and Next Steps

Sites Published:

United Arab Emirates - Cortex XDR

Qatar - Cortex XDR

Egypt - Cortex XDR

Saudi Arabia - Cortex XDR

South Africa - Cortex XDR

Brasil - Cortex XDR

Canada - Cortex XDR

中国 - Cortex XDR

香港 - Cortex XDR

澳門 - Cortex XDR

台灣 - Cortex XDR

USA - Cortex XDR

Österreich - Cortex XDR

Schweiz - Cortex XDR

Deutschland - Cortex XDR

Czech Republic - Cortex XDR

Denmark - Cortex XDR

Estonia - Cortex XDR

Finland - Cortex XDR

Greece - Cortex XDR

Magyarország - Cortex XDR

Ireland - Cortex XDR

Luxembourg - Cortex XDR

Latvia - Cortex XDR

España - Cortex XDR

Italia - Cortex XDR

Lithuania - Cortex XDR

Nederland - Cortex XDR

Norway - Cortex XDR

Portugal - Cortex XDR

România - Cortex XDR

Sverige - Cortex XDR

Türkiye - Cortex XDR

Malta - Cortex XDR

Belgique - Cortex XDR

France - Cortex XDR

日本 - Cortex XDR

Australia - Cortex XDR

Malaysia - Cortex XDR

New Zealand - Cortex XDR

Philippines - Cortex XDR

Singapore - Cortex XDR

Thailand - Cortex XDR

Vietnam - Cortex XDR

India - Cortex XDR

Argentina - Cortex XDR

Chile - Cortex XDR

Costa Rica - Cortex XDR

Ecuador - Cortex XDR

Guatemala - Cortex XDR

Colombia - Cortex XDR

México - Cortex XDR

Panama - Cortex XDR

Peru - Cortex XDR

Uruguay - Cortex XDR

Venezuela - Cortex XDR

Polska - Cortex XDR

United Kingdom - Cortex XDR

South Korea - Cortex XDR

Pakistan - Cortex XDR

Sri Lanka - Cortex XDR

Bulgaria - Cortex XDR

Bolivia - Cortex XDR

Indonesia - Cortex XDR

Kazakhstan - Cortex XDR

Moldova - Cortex XDR

Morocco - Cortex XDR

Tunisia - Cortex XDR

Kuwait - Cortex XDR

Oman - Cortex XDR

Slovakia - Cortex XDR

Kenya - Cortex XDR

Nigeria - Cortex XDR

Botswana - Cortex XDR

Slovenia - Cortex XDR

Croatia - Cortex XDR

Serbia - Cortex XDR

Bhutan - Cortex XDR

Nepal - Cortex XDR

Uzbekistan - Cortex XDR