WWT Presents Labs & LearningWWT PresentsNetwork Security with Palo Alto NetworksPalo Alto NetworksSecurity OperationsSecurity
Webinar

From Alerts to Outcomes: Modernizing the SOC with WWT and Palo Alto Networks Cortex XDR

Event Overview

Join World Wide Technology (WWT) and Palo Alto Networks for an immersive Partner Spotlight virtual event dedicated to advancing Security Operations and SOC excellence. This exclusive session digs into the Palo Alto Networks Cortex product portfolio, with a special emphasis on Cortex XDR. Experts from both organizations will explore how Cortex XDR empowers security teams to detect, investigate, and respond to threats across endpoints, networks, and cloud environments. Attendees will gain actionable insights into integrating Cortex solutions for holistic threat management and operational agility within modern SOCs.

Featured Speakers

Aaron Mayson

World Wide Technology

Technical Solutions Arch III

Aaron Mayson is a Partner Architect for Palo Alto Networks Strata and Prisma SASE lines of business. He is located in Austin, Texas, with an impres...
Matthew Harding

World Wide Technology

Principal Solutions Architect

Matthew Harding is a Partner Architect at World Wide Technology focused on the Palo Alto Networks Cortex portfolio. Widely regarded as one of the m...
Chris Smith

Palo Alto Networks

SVP, President - Prisma Cloud, NAM

Christopher Smith is a cybersecurity sales executive and thought leader, currently serving as SVP President, NAM - Next Generation Security (NGS) a...

What to expect

In this Partner Spotlight session, World Wide Technology (WWT) and Palo Alto Networks examine how modern security operations are being re-architected to better defend against today’s fast-moving threats. You’ll hear expert insights into why traditional SIEM and EDR approaches struggle under alert overload, tool sprawl, and disconnected data, and what changes when organizations adopt an XDR-driven model. Through real-world examples and practitioner perspectives, the discussion explores how unifying endpoint, network, cloud, and identity telemetry into a single platform enables security teams to move from manually stitching together signals to acting on complete, correlated attack stories—helping them respond faster, operate more efficiently, and make clearer, more confident security decisions.
  • In-depth exploration of Security Operations Center (SOC) best practices with WWT and Palo Alto Networks experts.
  • Discussion of Palo Alto Networks Cortex XDR capabilities.
  • Strategies to improve detection, investigation, and response workflows across enterprise environments.

Goals and Objectives

By attending, participants will: • Understand why traditional SIEM and EDR models struggle at scale and how disconnected tools, siloed telemetry, and manual investigation slow down detection and response in modern environments. • Learn how Cortex XDR correlates endpoint, network, cloud, and identity data into a single attack narrative, enabling security teams to see the full context of threats rather than isolated alerts. • See how automation and analytics reduce noise and analyst workload, helping SOC teams focus on high impact incidents and improve mean time to detect (MTTD) and mean time to respond (MTTR). • Gain practical perspective on operating a unified security platform, including how organizations can evolve their existing tools and workflows without a disruptive rip and replace approach. • Align security operations to measurable business outcomes, including faster response, improved visibility, and more efficient use of limited security resources.

Who should attend?

This discussion is designed for security leaders and practitioners responsible for protecting complex enterprise environments and advancing Security Operations maturity. Ideal attendees include professionals in the following roles: • Chief Information Security Officers (CISOs) • Vice Presidents and Directors of Security Operations • Security Operations Center (SOC) Managers and Leaders • Incident Response and Threat Detection Leads • Security Architects and Security Engineers • Endpoint, Network, and Cloud Security Engineers • Threat Hunters and SOC Analysts (Tier 2–3) • Security Engineering and Platform Owners responsible for XDR, SIEM, and SOAR solutions This session is especially valuable for organizations operating large, distributed environments that require unified detection and response across endpoints, networks, and cloud infrastructure.

Related content

ATC+

Palo Alto Cortex XDR Proving Ground Lab

WWT's ATC Palo Alto Cortex XDR Proving Ground Lab provides a consolidated solution built around Cortex XDR, the Palo Alto firewall, Windows endpoints and Windows servers to demonstrate how the Cortex XDR Agent protects against threats. The goal of Cortex XDR is to increase the operational efficiency of the security operations center. Cortex XDR accomplishes this by reducing alerts by combining similar events, stitching together logs from different sources and preventing as many threats as possible early in the attack cycle. Cortex XDR goes beyond the traditional EDR approach of using only endpoint data to identify and respond to threats by applying machine learning across all your enterprise, network, cloud and endpoint data. This approach enables you to quickly find and stop targeted attacks, insider abuse and remediate compromised endpoints. Cortex XDR combines functionality from Endpoint Protection, Endpoint Detection and Response, Network Traffic Analysis and User Behavior Analytics into a single console. This lab consists of servers running common applications that include Palo Alto Cortex XDR, Palo Alto Cortex XSOAR, Palo Alto VM-Series firewall, Active Directory, Windows IIS and SQL server, and several Windows 11 workstations. You will access the environment using a Windows-based jump host from which you can browse web consoles and open RDP/SSH sessions.
Advanced Configuration Lab
Advanced
320 launches

Platformizing the AI Decade with Palo Alto Networks

Palo Alto Networks' recent acquisitions signal a structural shift from portfolio integration to true platformization for the AI decade. By securing AI pipelines, embedding identity enforcement, converging observability, and governing autonomous endpoints, the platform aligns to machine-speed risk—positioning enterprises to architect resilient, future-ready security rather than react to disruption.
Blog
Feb 24, 2026

How Palo Alto Networks is Revolutionizing Security Operations with XSIAM

Cortex XSIAM revolutionizes cybersecurity by integrating AI, automation, and comprehensive visibility into a unified platform. Experience an autonomous SOC that empowers teams to focus on strategic threat hunting and proactive protection.
Article
Apr 10, 2025

Partner POV | Think You Have Visibility? Think Again.

Traditional SIEMs struggle with visibility, leaving gaps for attackers. Cortex XSIAM leverages rich telemetry and data stitching to provide comprehensive threat detection and response. By unifying endpoint, network, and cloud data, it reduces alert fatigue and enhances security operations, enabling proactive defense against sophisticated threats. Discover transformative security with Cortex.
Partner Contribution
Mar 5, 2026