Overview
The Palo Alto Networks Certified Security Automation Engineer (PCSAE) certification validates a candidate’s expertise in developing, analyzing, and administering security automation processes on the Cortex XSOAR platform, with a focus on native threat intelligence management. This certification is ideal for security professionals looking to advance their skills in security orchestration, automation, and response (SOAR).
Objectives
By the end of this course, leaner will be able to:
- Understand and implement security automation using Cortex XSOAR.
- Develop playbooks to automate incident response processes and enhance operational efficiency.
- Utilize native threat intelligence management capabilities within the Cortex XSOAR platform.
- Analyze and respond to security incidents by applying automation and orchestration techniques.
- Administer and troubleshoot Cortex XSOAR settings, configurations, and integrations.
Prerequisites
- Foundational knowledge of cybersecurity concepts and practices.
- Familiarity with Security Operations Center (SOC) workflows.
- Experience in incident response and case management.
- Basic knowledge of scripting (Python recommended).
- Understanding of SOAR platforms and their application in security operations.
Course Outline
- Overview of the Cortex XSOAR platform and its role in security automation and response.
- Step-by-step guide on creating, customizing, and deploying playbooks for various security incidents.
- Utilizing Cortex XSOAR’s native threat intelligence capabilities for enriched, data-driven incident response.
- Best practices for managing incidents, case layouts, and orchestrating responses within Cortex XSOAR.
- Techniques for configuring, troubleshooting, and optimizing the Cortex XSOAR environment for continuous performance.