This lab was developed with our partner, Palo Alto Networks. Your personal information may be shared with Palo Alto Networks, the lab sponsor, if you have opted in to receive product updates, announcements, and offers in your Account Profile.

GSP824

Overview

XSOAR is a Security Orchestration, Automation, and Response (SOAR) platform that helps you coordinate and accelerate incident response across your cloud environment. XSOAR integrates with a host of Google Cloud services and hundreds of security/IT products to help you automate and standardize incident response for more efficient security operations. In this lab, you will use Cortex XSOAR to automate your incident response.

What you'll do

• Deploy Prisma Cloud Compute on a GKE Cluster

• Access XSOAR and XSOAR overview

• Configure Integrations

• Deploy a malicious worm to trigger alert

• Automate the incident response with the Playbook