Master attack investigation and response in the Cortex XDR: Investigation and Response (EDU-262) course, learning to navigate the Incidents pages of the Cortex XDR console, understand causality and analytics, and utilize advanced tools like the EDL service and remote script execution, alongside crafting XDR rules and queries with XQL.
The Cortex XDR course provides hands-on training on activating a Cortex XDR instance and creating agent-installation packages and security policies to shield endpoints from sophisticated, fileless attacks.
This course covers incident management, Cortex XDR causality and analytics, alert analysis using Causality and Timeline Views, and advanced Cortex XDR Pro actions like remote script execution. It also teaches management of search queries and Cortex XDR rules, working with assets and inventories, and utilizing XQL for data search and visualization, along with external data collection capabilities.
Participants are required to have completed the EDU-260 (Cortex XDR: Prevention and Deployment) course prior to enrolling.
Level: Intermediate
Duration: 2 Days
Format: Instructor-Led Training
Supported Platforms: Cortex XDR
The course is ideal for Cybersecurity analysts, engineers, and security operations specialists.
As an Authorized Training Partner, Datacipher is celebrated for its outstanding educational programs and commitment to training excellence. Our distinction lies in the depth of expertise and passion of our trainers, who are not only seasoned professionals but also active security consultants with substantial real-world experience.
N/A
Can the EDU-262 course be taken online?
Yes. Our online Cortex XDR: Investigation and Response (EDU-262) course is delivered by expert instructors using web conferencing, with live demos and access to personal labs.
Is in-person classroom training available?
Yes, in-person sessions are available at our facilities or as customized on-site training. Check our “Price and Dates” section or contact us for details.
Will I receive official course materials?
Participants receive course materials in both electronic and printed forms, including detailed slides and recordings. Ensure bookings are confirmed at least ten days ahead for printed materials.
Can the electronic coursebook be printed?
Yes, the electronic coursebook is printable for flexible study options.
Do participants receive a certificate of completion?
Upon completion, participants receive an official Palo Alto Networks certificate of completion.
We accept all common payment methods in both the Euro and US Dollar as well as Palo Alto Networks training credits and vouchers for this Firewall: Troubleshooting (EDU-330) training course.
Guaranteed to Run Training Courses
Guaranteed to Run – Consigas guarantees to run this Firewall Configuration and Management (EDU-210) class, exempt in unexpected circumstances of force majeure, like an accident or illness of the instructor, which prevents the course from being conducted.
Guaranteed on next Course Booking
Guaranteed on next Booking – Consigas guarantees to run this Firewall Configuration and Management (EDU-210) class if one more student registers for the training course.
Guaranteed on next Course Booking
Scheduled Class – Consigas has scheduled this Firewall Configuration and Management (EDU-210) training course and booked an instructor. We rarely cancel any classes because of low inscriptions and provide a “Cancel no more than Once” guarantee. This means that in the rare case that we cannot run a class because of low inscriptions, we guarantee running the next course regardless of the number of attendees.
Training Course Sold Out
Sold Out – This class is fully booked. Please contact us using this form and we will put you on the waiting list or let you know in case we schedule an additional class.
Upon completing this instructor-led course with hands-on labs, participants will be proficient in managing and investigating incidents using Cortex XDR. They will gain expertise in analyzing alerts, utilizing advanced Cortex XDR Pro actions like remote script execution, and managing search queries and rules. Additionally, they will learn to handle assets, write XQL queries, and work with Cortex XDR’s external data collection capabilities.
Testimonials