Security Operations Insights
210 results found
Defending at the Speed of AI
A 12-point response plan for cybersecurity and resilience leaders
Building an AI Security Analyst from Scratch
Transform an empty AI platform into a working SOC analyst across four hands-on labs. Build Red Team skills for reconnaissance and credential attacks, Blue Team skills for endpoint and network investigation, and Correlation skills that tie six data sources into a unified threat timeline. Implement Human-in-the-Loop governance and learn why how you prompt matters more than which model you use.
From Alerts to Outcomes: Modernizing the SOC with WWT and Palo Alto Networks Cortex XDR
Join World Wide Technology (WWT) and Palo Alto Networks for an immersive Partner Spotlight virtual event dedicated to advancing Security Operations and SOC excellence. This exclusive session digs into the Palo Alto Networks Cortex product portfolio, with a special emphasis on Cortex XDR. Experts from both organizations will explore how Cortex XDR empowers security teams to detect, investigate, and respond to threats across endpoints, networks, and cloud environments. Attendees will gain actionable insights into integrating Cortex solutions for holistic threat management and operational agility within modern SOCs.
Better AI, Not Less AI: The Case for Explainability in Security Operations
As organizations struggle with alert fatigue, traditional AI security tools fall short by operating as black boxes that offer verdicts without reasoning. Explainable AI (XAI) addresses this by showing analysts why decisions are made across triage, investigation, and response. The result is faster workflows, smarter detection and analysts who build real threat intuition.
Introduction to Torq Hyperautomation and HyperSoC
Introduces the concept related to the Torq HyperAutomation platform include use cases for step runners, and Artificial Intelligent agents (HyperAgents).
Partner POV | Network-Derived Telemetry Deemed 'Essential.' Who Knew?
Gartner's new reference architecture elevates network-level telemetry to a strategic necessity, emphasizing its role in enhancing service-level observability and security. By integrating network-derived insights, organizations can make faster decisions, reduce risks, and ensure resilient digital services, transforming telemetry from an afterthought to a foundational architectural element.
Partner POV | Building a Self-Defending Ecosystem with Zscaler Deception
Modern Security Operations Centers (SOCs) are overwhelmed by a constant flood of data. In this environment, reactive security isn't just inefficient—it's a liability. A truly proactive strategy requires two things: unambiguous, high-fidelity signals and the automated ability to act on them instantly.
Partner POV | 4 Ways Businesses Use CrowdStrike Charlotte AI to Transform Security Operations
Charlotte AI revolutionizes security operations by acting as an embedded analyst within the CrowdStrike Falcon® platform. It automates triage, investigation, and response, enabling SOCs to operate at machine speed while maintaining human oversight. Organizations like Blackbaud and UEM report significant efficiency gains, showcasing AI's transformative potential in modern cybersecurity landscapes.
ATC+
Palo Alto Cortex XDR Proving Ground Lab
WWT's ATC Palo Alto Cortex XDR Proving Ground Lab provides a consolidated solution built around Cortex XDR, the Palo Alto firewall, Windows endpoints and Windows servers to demonstrate how the Cortex XDR Agent protects against threats. The goal of Cortex XDR is to increase the operational efficiency of the security operations center. Cortex XDR accomplishes this by reducing alerts by combining similar events, stitching together logs from different sources and preventing as many threats as possible early in the attack cycle. Cortex XDR goes beyond the traditional EDR approach of using only endpoint data to identify and respond to threats by applying machine learning across all your enterprise, network, cloud and endpoint data. This approach enables you to quickly find and stop targeted attacks, insider abuse and remediate compromised endpoints. Cortex XDR combines functionality from Endpoint Protection, Endpoint Detection and Response, Network Traffic Analysis and User Behavior Analytics into a single console. This lab consists of servers running common applications that include Palo Alto Cortex XDR, Palo Alto Cortex XSOAR, Palo Alto VM-Series firewall, Active Directory, Windows IIS and SQL server, and several Windows 11 workstations. You will access the environment using a Windows-based jump host from which you can browse web consoles and open RDP/SSH sessions.
Advanced Configuration Lab
•Advanced
•325 launches
Partner POV | Proofpoint Email DLP and Encryption
Proofpoint's Email Data Loss Prevention (DLP) and Encryption solution safeguards sensitive data in emails, preventing breaches and ensuring compliance. By integrating advanced detection, encryption, and real-time reporting, it addresses human-centric data loss across channels. This centralized approach enhances security, operational efficiency, and user experience, making data protection seamless and effective.
Partner POV | Dataminr for Cyber Defense: What's Coming, What It Costs, and What to Do Next
In 2024, 57% of cyber attacks went undetected by security teams despite using numerous tools. Dataminr's AI-native Cyber Defense unites threat intelligence, operations, and risk management to answer critical questions: What's coming? What does it cost? What do we do next? This integrated approach enhances foresight, focus, and action.
Partner Use Case | Leading Crypto Trading Company Powers and Secures Its DevOps Environment with Infoblox
A leading blockchain firm revolutionized its crypto trading platform by adopting Infoblox's BloxOne DDI. This cloud-native solution enhances security, scalability, and developer efficiency, enabling rapid app deployment and seamless DNS management. Discover how this innovation future-proofs fintech growth and optimizes DevOps environments.