Palo Alto Cortex XDR in practice
An overabundance of incidents or false alarms can make the work of security analysts very difficult, as it increases the time to detect and respond to an actual cyber attack. Intelligent (and properly configured) tools can help them a lot. In the workshop, Uroš Šuštar therefore explained how we use Palo Alto Cortex XDR at NIL and how some of the most effective functionalities work in practice: automated analytics, instant forensics, manual and automated incident response, and connection to global security incident databases.
The recording was made at the SecurIT 2020 conference .