EDU-262PAPaloAltoPA-EDU-2623.6<p>Successful completion of this instructor-led course with hands-on lab activities should enable the students to: </p> <ul> <li>Investigate and manage incidents</li><li>Describe the Cortex XDR causality and analytics concepts</li><li>Analyze alerts using the Causality and Timeline Views</li><li>Work with Cortex XDR Pro actions such as remote script execution</li><li>Create and manage on-demand and scheduled search queries in the Query Center</li><li>Create and manage the Cortex XDR rules BIOC and IOC</li><li>Working with Cortex XDR assets and inventories</li><li>Write XQL queries to search datasets and visualize the result sets</li><li>Work with Cortex XDR&rsquo;s external-data collection</li></ul><p>Participants must have completed the <span class="cms-link-marked"><a class="fl-href-prod" href="/swisscom/en/course/paloalto-edu-260"><svg role="img" aria-hidden="true" focusable="false" data-nosnippet class="cms-linkmark"><use xlink:href="/css/img/icnset-linkmarks.svg#linkmark"></use></svg>Cortex XDR: Prevention and Deployment <span class="fl-prod-pcode">(EDU-260)</span></a></span> course.</p><ul> <li>Cybersecurity analysts and engineers</li><li>Security operations specialists</li></ul><ul> <li>1 - Cortex XDR Incidents</li><li>2 - Causality and Analytics Concepts</li><li>3 - Causality Analysis of Alerts</li><li>4 - Advanced Response Actions</li><li>5 - Building Search Queries</li><li>6 - Building XDR Rules</li><li>7 - Cortex XDR Assets</li><li>8 - Introduction to XQL</li><li>9 - External Data Collection</li></ul>Successful completion of this instructor-led course with hands-on lab activities should enable the students to: - Investigate and manage incidents - Describe the Cortex XDR causality and analytics concepts - Analyze alerts using the Causality and Timeline Views - Work with Cortex XDR Pro actions such as remote script execution - Create and manage on-demand and scheduled search queries in the Query Center - Create and manage the Cortex XDR rules BIOC and IOC - Working with Cortex XDR assets and inventories - Write XQL queries to search datasets and visualize the result sets - Work with Cortex XDR’s external-data collectionParticipants must have completed the Cortex XDR: Prevention and Deployment (EDU-260) course.- Cybersecurity analysts and engineers - Security operations specialists- 1 - Cortex XDR Incidents - 2 - Causality and Analytics Concepts - 3 - Causality Analysis of Alerts - 4 - Advanced Response Actions - 5 - Building Search Queries - 6 - Building XDR Rules - 7 - Cortex XDR Assets - 8 - Introduction to XQL - 9 - External Data Collection2 days1395.001395.001395.001395.001980.001980.001995.001595.001195.001980.0020.0020.0020.0020.00