Overview
Explore
Labs
Services
Events
Partners
What's popular
Securing AI Transformation with WWT's Jim Kavanaugh and Cisco's Jeetu Patel
As AI adoption accelerates across industries, businesses face unprecedented challenges in securing their AI-driven transformations. In this exclusive fireside chat, Cisco EVP and Chief Product Officer Jeetu Patel and WWT Co-founder and CEO Jim Kavanaugh discuss the latest breakthroughs in AI security and how enterprises can more confidently innovate while safeguarding their AI applications.
Jeetu and Jim will also explore the global landscape and its impact on the future of enterprise AI; provide practical guidance on how to craft an AI strategy that balances the need for speed with the necessity of caution; and talk about emerging AI solutions and how they can integrate into your IT strategy.
Hands-On Lab Workshop: LLM Security
In this event, you will gain the knowledge and tools to identify, mitigate, and prevent security risks, strengthening the reliability and security of your AI systems. WWT's Prompt Injection and Training Data Poisoning labs help users understand and defend against two major LLM security threats. The Prompt Injection Lab demonstrates how attackers manipulate LLMs with deceptive inputs to extract sensitive data or execute unintended actions, while the Training Data Poisoning Lab explores how corrupting training or retrieval data can introduce biases , vulnerabilities, or backdoors.
Security Priorities for 2025
In this report, our security experts outline four key areas to focus on in 2025
Hour of Cyber
Hour of Cyber is a private thought-leadership event hosted monthly for security leaders to
connect with WWT experts and executive advisors.
Next-Generation Firewall (NGFW)
This learning series will explore Next-Generation Firewalls (NGFW), which are advanced network security devices that combine traditional firewall capabilities with additional features such as intrusion prevention, application awareness and control, and advanced threat protection. These firewalls go beyond the capabilities of traditional firewalls by providing deeper inspection of network traffic and more granular control over applications and user activities.
What's new
Partner POV | Role-based views for every security team
Empowerment and speed for security teams without losing unified cloud context.
Hands-On Lab Workshop: LLM Security
In this event, you will gain the knowledge and tools to identify, mitigate, and prevent security risks, strengthening the reliability and security of your AI systems. WWT's Prompt Injection and Training Data Poisoning labs help users understand and defend against two major LLM security threats. The Prompt Injection Lab demonstrates how attackers manipulate LLMs with deceptive inputs to extract sensitive data or execute unintended actions, while the Training Data Poisoning Lab explores how corrupting training or retrieval data can introduce biases , vulnerabilities, or backdoors.
A Practitioner's Guide: SOC of the Future
Is the future here? Can we build a scalable, agile foundation that leverages robust data management and pipelines to enable real-time alerting? Can it leverage AI-augmentation and automated responses to proactively detect and mitigate threats? I think we may be close...
Securing AI Transformation with WWT's Jim Kavanaugh and Cisco's Jeetu Patel
As AI adoption accelerates across industries, businesses face unprecedented challenges in securing their AI-driven transformations. In this exclusive fireside chat, Cisco EVP and Chief Product Officer Jeetu Patel and WWT Co-founder and CEO Jim Kavanaugh discuss the latest breakthroughs in AI security and how enterprises can more confidently innovate while safeguarding their AI applications.
Jeetu and Jim will also explore the global landscape and its impact on the future of enterprise AI; provide practical guidance on how to craft an AI strategy that balances the need for speed with the necessity of caution; and talk about emerging AI solutions and how they can integrate into your IT strategy.
Hour of Cyber: Security Operations
As cyber threats grow in complexity, a resilient, high-performance Security Operations Center (SOC) is essential. Explore the core functions of security operations while examining the technologies shaping modern SOCs. Learn how AI, machine learning and high-performance computing improve detection speed, automate response and strengthen security posture.
A Practitioner's Guide: Detections within Security Operations
The analytics engine, sometimes referred to as a detection engine, is the core of a modern security operations center (SOC), generating high-fidelity alerts and adding context so responders can quickly identify and act on threats. In this article we discuss the evolution of security operations detections, and the major players in the space.
Partner POV | Assessing Misconfigurations at Scale with Falcon Exposure Management
Misconfigurations often fly under the radar, but overlooking these risks can open the door to adversaries. Learn how to simplify configuration management for large environments.
Partner POV | Solving for Exponential Data Growth in Next-Gen SIEM
We dive into the ability of next-gen SIEM systems to address the common problem of rapid data growth in the first blog of a new series, "What Makes Next-Gen SIEM Next-Gen?"
Healthcare Technology Insights for 2025
The unprecedented speed at which regulatory and political changes are announced by our new federal administration is requiring healthcare executives to find balance between strengthening their core business and catching up with the AI train that has taken most industries by storm. The endless opportunities made possible by AI for reinventing healthcare are offset by the risks associated with increasing cyber threats and workforce challenges. Collectively, this promises to make 2025 a year like no other.
SIEM Overload to Smart Security: The Power of Data Pipeline and Modern Storage
Traditional SIEMs have long been treated as massive log repositories, leading to skyrocketing costs and visibility gaps. Data pipeline management changes the game — optimizing log ingestion, enriching security data, and reducing SIEM costs without sacrificing detection capabilities. Learn how modern data pipelines, security data lakes and AI-driven analytics are transforming SOC efficiency and redefining how organizations manage security telemetry.
WWT Partner Innovation Highlights S4 2025
Read on for highlights from the S4 2025 conference focusing on Innovative OT Security Solutions.
Avoiding the "Dark Ages" of the Trained Cyber Workforce
AI is revolutionizing cybersecurity by automating routine tasks, allowing professionals to focus on strategic decision-making. This shift demands new skills that blend game theory, critical thinking and business acumen. Without updated training, we risk a digital "Dark Age." Embracing this evolution ensures robust protection and aligns security with organizational goals.
Security Testing Suite
This is a mini Lab that will walk users through web application security tools that they may use during a Cyber Range red team event. This learning path will teach you the fundamentals of comprehensive penetration testing tools such as Burp Suite, MSFConsole, BloodHound, and Impacket.
Understanding Salt Typhoon: Why Security Leaders Should Take Notice
Salt Typhoon, a Chinese state-sponsored cyber espionage campaign, has targeted critical U.S. telecommunications infrastructure, exposing vulnerabilities and compromising sensitive data. This sophisticated operation underscores the urgent need for robust cybersecurity measures and heightened awareness among security leaders to protect against evolving threats.
Palo Alto Cortex XDR Proving Ground Lab
WWT's ATC Palo Alto Cortex XDR Proving Ground Lab provides a consolidated solution built around Cortex XDR, the Palo Alto firewall, Windows endpoints and Windows servers to demonstrate how the Cortex XDR Agent protects against threats. The goal of Cortex XDR is to increase the operational efficiency of the security operations center. Cortex XDR accomplishes this by reducing alerts by combining similar events, stitching together logs from different sources and preventing as many threats as possible early in the attack cycle. Cortex XDR goes beyond the traditional EDR approach of using only endpoint data to identify and respond to threats by applying machine learning across all your enterprise, network, cloud and endpoint data. This approach enables you to quickly find and stop targeted attacks, insider abuse and remediate compromised endpoints. Cortex XDR combines functionality from Endpoint Protection, Endpoint Detection and Response, Network Traffic Analysis and User Behavior Analytics into a single console. This lab consists of servers running common applications that include Palo Alto Cortex XDR, Palo Alto Cortex XSOAR, Palo Alto VM-Series firewall, Active Directory, Windows IIS and SQL server, and several Windows 10 workstations. You will access the environment using a Windows-based jump host from which you can browse web consoles and open RDP/SSH sessions.
Cisco XDR Learning Path
Explore Cisco's XDR allowing it's users to correlate data across several vendors and vectors providing a wholistic view of ones environment. Throughout this learning path and corresponding lab you will learn the fundamentals of the Cisco XDR components and tools that allow SOC analysts visibility and context into advanced threats! We will take you through an introduction and operation of the XDR console as well as automation. Let's get started!
Armis: To Catch a Hacker
The Armis to catch a hacker lab will walk users through a realistic exercise based upon real-life incidents with with sophisticated Advanced Persistent Threat (APTs) Actors. These threat actors will move laterally across the network and exploit common visibility gaps to reach their target objectives. This lab will show users how Armis can be leveraged to see this movement.
Introduction to IT/OT
Get an introduction to operational technology and the various components and systems, including the Internet of Things (IoT).
Password Cracking
This is a mini Lab that will walk users through password-cracking tools that they may use during a Cyber Range red team event. This learning path will teach you the fundamentals of cracking and brute-forcing passwords with John the Ripper, Hydra, and Mimikatz.
Network Reconnaissance
This is a mini Lab that will walk users through network reconnaissance tools that they may use during a Cyber Range red team event. This learning path will teach you the fundamentals of network reconnaissance with Nmap and DirBuster.