SecOps Insider - March

Cortex SecOps Information Hub

Explore the innovations catapulting SecOps forward at Symphony 2024

Join us at Symphony to discover advancements in AI, automation and machine learning that empower security teams to overcome security operations challenges. Industry leaders, tech visionaries and cybersecurity professionals will show the latest innovations to predict, detect and respond to threats faster than ever before.

Register now

Letting AI Handle the Heavy Lifting in the Modern SOC

This blog discusses the transformative impact of artificial intelligence (AI) on cybersecurity, revealing a paradigm shift in defense strategies against evolving cyber threats. Through insights from Donnie Tindall, an expert at Unit 42 Security Consulting, the narrative unveils AI's pivotal role in combating web scraping, and automating Security Operations Centers (SOCs).?

Read now

5 Unique Challenges for AI in Cybersecurity

This blog covers challenges in applying AI to cybersecurity, focusing on scarce labeled data, alert fatigue from unsupervised learning, and the need for continuous model adaptation. It emphasizes the importance of domain expertise in validating AI models and highlights the necessity of explainability for effective incident response. Drawing from Cortex's approach, it concludes with key takeaways, stressing specialization, adaptability, and transparency in AI cybersecurity integration.

Read more

Your Guide to 2023 MITRE Engenuity Results

In the new MITRE ATT&CK Enterprise evaluations ebook, we dive deep into how 29 leading vendors tackled the real-world tactics, techniques, and procedures of the Russian-based threat group, Turla.

Why is this important for you?

If you're looking to fortify your organization's cybersecurity, these evaluations provide an objective look at each vendor's performance. The results of these assessments closely mirror how well these solutions can defend against today's modern threats.

Download now

Don’t forget to subscribe to the Cortex SecOps blogs, delivered fresh to your inbox every Friday for a weekly recap.

XSOAR Playbook of the Week Blog Series

Check out our Playbook of the Week blog series which covers a myriad of automation use cases to streamline processes, speed incident resolution and help security teams scale. From managing threat intel feeds (free or otherwise) to automating SecOps ticketing, there’s something there for every security team.

A Practical Guide to Deploying SecOps Automation

This guide offers practical insights for security practitioners, emphasizing the importance of automation to tackle evolving cyber threats. It covers critical steps like starting with simple tasks, securing buy-in, and leveraging tools like Cortex XSOAR for efficient SecOps workflows.

Unit 42? studied Cortex? Xpanse? data from 250 organizations and discovered attackers are taking advantage of new Common Vulnerabilities and Exposures (CVEs) and other vulnerabilities faster than ever before. To learn about this and other key findings, predictions and recommendations, join our experts as they shine a light into our “2023 Unit 42 Attack Surface Threat Report.”

More Information

• Learn more about Cortex.
• Read Security Operations blogs.
• Join an upcoming Cortex event.
• Request a Cortex demo.

?2023 Palo Alto Networks. All the company names and/or brand names, and/or product names, and/or logos referred to in this document are either registered trademarks or trademarks pending registration in accordance with relevant national laws.