Search
Generic filters
Exact matches only
Filter by Custom Post Type

XSOAR Automation that’s accessible for everyone

"Empowering security teams to free themselves from workflow complexity and do more, faster, with any use case."

Palo Alto Networks

Tycho Schmidt, System Engineer and Specialist XSOAR
Break-out sessie 16:05 – 16:35

Security teams have plenty of challenges. Workflow automation shouldn’t be one of them. Cortex XSOAR puts automation in everyone’s hands, empowering security teams to free themselves from workflow complexity and do more, faster, with any use case.
When selecting a SOAR platform, you need to make sure it will serve your current automation needs as well as scale with you as you grow and evolve your security operations.

Cortex XSOAR features:

  • Easy deployment with minimal to no in-house DevOps skills. Our wide range of integrations and automation packs are easily customizable with visual editors.
  • An open and extensible platform and SOAR ecosystem that scales and grows with your security operations.
  • Fully integrated case management designed for your security team, so they can manage the entire incident lifecycle in one place
  • A central threat intel library integrated with your incidents so you get automatic mapping of external threat data as well as full visibility into external threats and – more importantly – context on how they impact your environment.

How we do this ?

  1. The Possibilities of Security Automation
    Our Palo Alto Networks Security Operations Center (SOC) provides services with a lean in-house team of 10 SOC analysts. Our SOC operates in a single shift during standard business hours. To ensure we aren’t late to respond to an attack after hours, we also have a 24/7 on-call rotation
  2. Automated Phishing Response
    A typical phishing response involves multiple, manual steps that are repetitive and take up a significant amount of a security engineer’s time. With automation, the security engineer only needs to step in when a decision is needed.
  3. Automated Ransomware Response
    When a breach happens, your team has to act fast. With Cortex XSOAR, you get a head start with best practices workflows and automated actions for isolating and remediating infected hosts.
  4. Automated Threat Intelligence
    Cortex XSOAR Threat Intel Management:

    • Provides a central threat intelligence library for your enterprise;
    • Automatically maps threat data to your incidents;
    • Operationalizes (parse, prioritize, distribute) your threat intelligence.
  5. Automated Malware Analysis
    When a malware alert comes in, a security incident responder has to chase down related events, check threat intel sources, notify the end user, open tickets to have the user’s host machine reimaged and password reset.
  6. Automated Network Security operations
    While firewalls continue to be a critical part of enterprise security strategies, network security operations teams remain challenged by the lack of automation, network security complexity, and lack of overall visibility across siloed teams working on the same incidents.

Terug naar eventpagina  Over Palo Alto Networks

afbeelding op Tycho Schmidt:System Engineer and Specialist XSOAR, Palo Alto Networks

Palo Alto Networks loopt voorop in een nieuw tijdperk van cyber security door bescherming te bieden aan duizenden bedrijven, overheden en serviceproviders tegen cyberaanvallen. In tegenstelling tot bestaande deelproducten zorgt het next-generation security-platform van Palo Alto Networks voor het op een veilige manier uitvoeren van bedrijfsprocessen, terwijl het tegelijkertijd bescherming biedt voor essentiële factoren van hedendaagse dynamische computeromgevingen: applicaties, eindgebruikers en content.