Cortex XSOAR: Engineering Security Automation Solutions

• SOC / SIEM / Automation Engineers
• MSSPs and Service Delivery Partners working with XSOAR

Participants should have a basic understanding of:

• Networking concepts, such as identifying private IPs and domains
• Cybersecurity concepts, such as Indicators of Compromise
• Navigating Windows and Linux environments using the GUI and CLI

Kursziel

Successful completion of this four-day, instructor-led course should enable students to integrate their existing security tools with Cortex XSOAR to streamline security processes, accelerate security outcomes, and automate manual security-oriented tasks.

Kursinhalt

Course Modules:

• 0 - Course Introduction
• 1 - XSOAR Overview
• 2 - Incident Management
• 3 - Threat Intelligence
• 4 - Analyst Investigations
• 5 - Dashboards, Reports, and Timers
• 6 - Integrations and Content Management
• 7 - Architecture
• 8 - Use Case Planning and Implementation
• 9 - Playbook Development
• 10 - Automation Scripts

Zertifizierung