Palo Alto Networks: Cortex XDR 2: Prevention, Analysis, and Response (EDU-260)

This instructor-led training enables you to prevent attacks on your endpoints. After an overview of the Cortex XDR components, the training introduces the Cortex XDR management console and demonstrates how to install agents on your endpoints and how to create Security profiles and policies.


The training enables you to perform and track response actions, tune profiles, and work with Cortex XDR alerts. It concludes by discussing basic troubleshooting of the agent, the on-premises Broker VM component, and Cortex XDR deployment.


You will have access to your own dedicated lab for a full three months without any time or usage limit.

Course Information

Price: $2,995.00
Duration: 3 days
Certification: None
Exam: 
Learning Credits: 30
Course Delivery Options

Check out our full list of training locations and learning formats. Please note that the location you choose may be an Established HD-ILT location with a virtual live instructor.

Train face-to-face with the live instructor.

Access to on-demand training content anytime, anywhere.

Attend the live class from the comfort of your home or office.

Interact with a live, remote instructor from a specialized, HD-equipped classroom near you. An SLI sales rep will confirm location availability prior to registration confirmation.

All Sunset Learning dates are guaranteed to run!

Register

Prerequisites:

Participants must be familiar with enterprise product deployment, networking, and security concepts

 

Target Audience:

  • Cybersecurity analysts and engineers
  • Security operations specialists

 

Course Objectives:

Successful completion of this instructor-led course with hands-on lab activities should enable you to:

  • Describe the architecture and components of the Cortex XDR family
  • Use the Cortex XDR management console, including reporting
  • Create Cortex XDR agent installation packages, endpoint groups, and policies
  • Deploy Cortex XDR agents on endpoints
  • Create and manage Exploit and Malware Prevention profiles
  • Investigate alerts and prioritize them using starring and exclusion policies
  • Tune Security profiles using Cortex XDR exceptions
  • Perform and track response actions in the Action Center
  • Perform basic troubleshooting related to Cortex XDR agents
  • Deploy a Broker VM and activate the Local Agents Settings applet
  • Understand Cortex XDR deployment concepts and activation requirements
  • Work with the Customer Support Portal and Cortex XDR Gateway for authentication and authorization

 

Course Outline:

  • Cortex XDR Introduction
  • Cortex XDR Main Components
  • Cortex XDR Management Console
  • Profiles and Policies
  • Malware Protection
  • Exploit Protection
  • Cortex XDR Alerts
  • Exclusions and Exceptions
  • Response Actions
  • Basic Troubleshooting
  • Broker VM Overview
  • Deployment Considerations