This certification is designed to validate knowledge, understanding, and the job-ready skills required for basic application of the Palo Alto Networks Cortex portfolio of solutions and related technologies in a Security Operations Center (SOC)
Target Audience: This exam is designed for the individuals with the following job roles:
- Security Operations Center (SOC) professionals responsible for the basic application of Palo Alto Networks Cortex products and solutions:
- Cortex XDR
- Cortex XSIAM
- Cortex XSOAR
Skills Required The successful candidate can demonstrate understanding of SecOps processes and procedures
- MITRE ATT&CK framework
- Incident response plans
- Investigative lifecycle
- Cortex XDR, Cortex XSIAM, Cortex XSOAR in the SOC
- Review dashboards and generate reports (compliance)
- Identify key components of incidents
- Initiate playbooks
- Identify IOCs
- Escalate incidents
- Initiate response actions
- Basic knowledge of analytics concepts, such as profiling and entity classification
- Alerts and incidents
- Interaction with playbook tasks to progress an investigation
Recommended training for this certification
Recommended Prerequisites:
Certifications:
- Palo Alto Networks Certified Cybersecurity Apprentice
- Palo Alto Networks Certified Cybersecurity Practitioner