-
Course
Detection and Response with XDR
Published by Pearson (November 5, 2024)
ISBN-13: 9780135345597
Product Information
Stay ahead of evolving security threats by mastering eXtended Detection and Response (XDR). Modern security operations face a rapidly evolving threat landscape, making it difficult to gain complete visibility across disparate security tools. In the Detection and Response with XDR: Integrated Security Solutions to Combat Emerging Threats course, get an introduction to how XDR can bridge that gap by centralizing telemetry, intelligence, and response capabilities from a variety of sources into a single platform.
In this comprehensive course, you'll discover why XDR is a game-changer in reducing detection and response times, explore how XDR optimizes security operations, and learn practical strategies to implement XDR in your organization. This course provides the necessary skills to design, implement, and automate threat responses using cutting-edge XDR technology.
Module 1: Security Operations and Tooling
Lesson 1: The Modern Security Operations Center
Lesson 2: Security Operations Concepts and Tooling
Lesson 3: Computer Security Incident Response Teams (CSIRT)
Module 2: Extended Detection and Response (XDR)
Lesson 4: Trends and Challenges
Lesson 5: Introducing XDR
Lesson 6: XDR's Integrated Security Stack
Lesson 7: Threat Hunting
Lesson 8: Investigating an Incident
Lesson 9: Responding to an Incident
Module 4: Security Automation
Lesson 10: What Is Security Automation?
Lesson 11: How Does Automation Fit into XDR?
Lesson 12: Cisco XDR Automation
Steven (Steve) McNutt, CCIE #6495 (Enterprise Infrastructure, Security), M.S. Cybersecurity, and DevNet Professional is a Cybersecurity Technical Solutions Architect for Cisco. He's presented on XDR Orchestration at Cisco Live multiple times. Steve is a member of the Security Programmability Team (SPOT), which develops and delivers training content around Security Programmability. Steve has been in the Information Technology business since 1995 in various roles, including individual contributor, management, and business founder/owner.
Katherine McNamara, CCIE No. 50931, is a Cybersecurity Technical Solutions Architect at Cisco Systems and has worked with large enterprise and public sector customers. Katherine joined Cisco in 2014 and has worked in IT since 2007 in multiple networking and security roles. She graduated with a Bachelor of Science in IT Security and a Master of Science in Information Security and Assurance. Her many certifications include CCIE Data Center, CCIE Security, MCSE, VCP, CISSP, CCNP, CCDP, and more. Outside of her day job, she runs a blog called network-node.com, which provides training articles and videos about Cisco Security products. She also helps co-organize the largest Cisco study Meetup group in the world named Routergods.
Matt Vander Horst is a Technical Leader in Cisco's Security Business Group focused on Cisco XDR. He's a subject matter expert for XDR automation and is responsible for helping Cisco engineers, customers, and partners get the most value out of XDR. Matt has hosted a multitude of webinars and deep dives about XDR, has presented about XDR at conferences around the globe, and currently manages the automation content built into XDR and the XDR Automation Exchange. Prior to joining Cisco in early 2020, Matt spent eight years managing a Cisco Identity Services Engine (ISE) deployment and network infrastructure automation for a large international financial organization. His background includes network engineering, system administration, software development, and DevOps.