fbpx

(EDU-380) Cortex XSOAR: Automation and Orchestration

Course Duration

4 Days

Target Audience

Security-operations (SecOps), or security, orchestration, automation, and response (SOAR) engineers, managed security service providers (MSSPs), service delivery partners, system integrators, and professional services engineers

Prerequisites

Participants must complete the Cortex XSOAR Analyst digital learning. Participants who have experience with scripting, the use of Python and JavaScript, and the use of JSON data objects will likely be able to apply what they learn more quickly than participants without such experience. However, completion of the course does not require proficiency in writing code.

Course Outline

Course Overview

  • Configure integrations, create tasks, and develop playbooks
  • Build incident layouts that enable analysts to triage and investigate incidents efficiently
  • Identify how to categorize event information and map that information to display fields
  • Develop automations, manage content, indicator data, and artifact stores, schedule jobs, organize users and user roles, oversee case management, and foster collaboration

This training is designed to enable a SOC, CERT, CSIRT, or SOAR engineer to start working with Cortex XSOAR integrations, playbooks, incident-page layouts, and other system features to facilitate resource orchestration, process automation, case management, and analyst workflow. The third module of the course demonstrates a complete playbook-development process for automating a typical analyst workflow to address phishing incidents. This end-to-end view of the development process provides a framework for more focused discussions of individual topics that are covered in subsequent modules.

Key Learning Objectives

This training is designed to enable a SOC, CERT, CSIRT, or SOAR engineer to start working with Cortex XSOAR integrations, playbooks, incident-page layouts, and other system features to facilitate resource orchestration, process automation, case management, and analyst workflow.

The course includes coverage of a complete playbook-development process for automating a typical analyst workflow to address phishing incidents. This end-to-end view of the development process provides a framework for more focused discussions of individual topics that are covered in the course.

Course Modules

  1. Core Functionality and Feature Sets
  2. Enabling and Configuring Integrations
  3. Playbook Development
  4. Classification and Mapping
  5. Layout Builder
  6. Solution Architecture
  7. Docker
  8. Automation Development & Debugging
  9. The Marketplace and Content Management
  10. Indicators and Threat Intelligence Management
  11. Jobs and Job Scheduling
  12. Users and Role‑Based Access Controls (RBAC)
  13. Integration Development

What Our Students Say

Learning Today, Leading Tomorrow

JOB SEEKER

Want to start out in the lucrative IT sector, armed with skills in a specific technology?

STUDENT

Entering the workforce and want to improve job prospects?

EMPLOYEE

Looking for your next promotion or need some additional certification skills?

ENTERPRISE

Do you have an immediate need to upskill your IT Team, but no training budget?

Hottest Cybersecurity Jobs Of 2022

Palo Alto Networks Certified Network Security Engineer

Average Salaries in 2022: $91,000 * USD

A Palo Alto Certified Network Security Engineer (PCNSE) is a professional that is tasked to maintain and install the network security of an organization. Engineer delivers support, assessment, and research into the deployed Palo Alto Networks equipment’s processes and issues. The engineer will assume responsibility as the expert of the Palo Alto Networks products, such as firewall, IPS/IDS, and VPN, among others.

Payscale (as of September 2022)

Cybersecurity Engineer

Average Salaries in 2022: $109,749 * USD

Cybersecurity Engineers, sometimes called Information Security Engineers, identify threats and vulnerabilities in systems and software, then apply their skills to developing and implementing high-tech solutions to defend against hacking, malware and ransomware, insider threats and all types of cybercrime.

ZipRecruiter (as of April 2022)

Security Analyst

Average Salaries in 2022: $83,549 * USD

Security Analysts are ultimately responsible for ensuring that the company’s digital assets are protected from unauthorized access. This includes securing both online and on-premise infrastructures, weeding through metrics and data to filter out suspicious activity, and finding and mitigating risks before breaches occur.

ZipRecruiter (as of April 2022)

Penetration Tester

Average Salaries in 2022: $105,984 * USD

Penetration Testers help organizations identify and resolve security vulnerabilities affecting their digital assets and computer networks

ZipRecruiter (as of April 2022).

Security Consultant

Average Salaries in 2022: $87,922 * USD

A Security Consultant works as an advisor and supervisor for all security measures necessary to effectively protect a company or client’s assets. Security Consultants use their knowledge and expertise to assess possible security threats and breaches in order to prevent them and create contingency protocols and plans for when violations occur.

ZipRecruiter (as of April 2022)

Student Testimonials

“A great option that offers flexibility to your customers – the process was super simple to step through”

Luke Snell

Principal Networks

“Great course. Lots of information I can use for my job.”

R Griffin

Network Engineer

STUDY NOW PAY LATER | FLEXIBLE PAYMENT OPTIONS

Singapore

Singapore

How it works?

Affirm

Get up to $17,500 USD to choose weekly, fortnightly, or monthly repayments over a repayment term of up to 24 months, with no deposit!

Student Eligibility:

  • 18 years or older.
  • American Citizen and American Resident.
  • Have a mobile phone and email address.
  • Be employed and able to service the payment plan.

More details and FAQs about Learn Now, Pay Later here.

To have your course tuition covered by Affirm, please contact us.

Atome

Get up to $3,000 SGD on a 12-month interest-free loan with Atome. Atome is a reusable account that lets you study now and pay later.

Student Eligibility:

  • 18 years or older.
  • Singapore Citizen and Singapore Resident.
  • Hold NRIC/FIN
  • Have a mobile phone and email address.
  • Be employed and able to service the payment plan.

Shop online and in-store up to your account limit, then set flexible repayments to suit your lifestyle. There’s no deposit and every purchase comes with its own interest-free period. More details and FAQ about Atome here.

To have your course tuition covered by Atome, please contact us.

Latitude Pay

Get up to $5,000 SGD on a 3-month interest-free loan with Latitude Pay.

Student Eligibility:

  • 18 years or older.
  • Singapore Citizen and Singapore Resident.
  • Hold NRIC/FIN
  • Have a mobile phone and email address.
  • Be employed and able to service the payment plan.

Latitude Pay is a reusable account that lets you buy now and pay later. Shop online and in-store up to your account limit, then set flexible repayments to suit your lifestyle. There’s no deposit and every purchase comes with its own interest-free period. More details and FAQ about Latitude Pay here. To have your course tuition covered by Latitude Pay, please contact us.

Zip Money

Get up to $8,000 AUD on a 12-month interest-free loan with Zip Money.

Student Eligibility:

  • 18 years or older.
  • Australian Citizen, New Zealand Citizen, or Permanent Resident.
  • Have a mobile phone and email address.
  • Be employed and able to service the payment plan.

Zip Money is a reusable account that lets you study now and pay later. Shop online and in-store up to your account limit, then set flexible repayments to suit your lifestyle. There’s no deposit and every purchase comes with its own interest-free period. More details and FAQ about Zip Money here. To have your course tuition covered by Zip Money, please contact us.

Get Custom Advice

Fill out the form below, and we’ll give you a ring to talk through your options.

    Translate »