Palo Alto Networks: Cortex XSOAR 6.8: Automation and Orchestration(EDU-380)
The Cortex™ XSOAR 6.8: Automation and Orchestration (EDU-380) course is four days of instructor-led training that will help you: Configure integrations, create tasks, and develop playbooks Build incident layouts that enable analysts to triage and investigate incidents efficiently Identify how to categorize event information and map that information to display fields Develop automations, manage content, indicator data, and artifact stores, schedule jobs, organize users and user roles, oversee case management, and foster collaboration This class is powered by Cloud Harmonics.
Course Objectives
This training is designed to enable a SOC, CERT, CSIRT, or SOAR engineer to start working with Cortex XSOAR integrations, playbooks, incident-page layouts, and other system features to facilitate resource orchestration, process automation, case management, and analyst workflow. The course includes coverage of a complete playbook-development process for automating a typical analyst workflow to address phishing incidents. This end-to-end view of the development process provides a framework for more focused discussions of individual topics that are covered in the course.
Agenda
- Module 1 – Core Functionality and Feature Sets
- Module 2 – Enabling and Configuring Integrations
- Module 3 – Playbook Development
- Module 4 – Classification and Mapping
- Module 5 – Layout Builder
- Module 6 – Solution Architecture
- Module 7 – Docker
- Module 8 – Automation Development and Debugging
- Module 9 – The Marketplace and Content Management
- Module 10 – Indicators and Threat Intelligence Management
- Module 11 – Jobs and Job Scheduling
- Module 12 – Users and Role-Based Access Controls (RBAC)
- Module 13 – Integration Development
FREE
Interested in course?
Course Type: Instructor Led