Learn real-world cyber security skills directly from top industry experts during SANS Live Training events. Explore options.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Transforming Detection and Response: A SANS Review of Cortex XDR

  • Wednesday, May 06, 2020 at 1:00 PM EDT (2020-05-06 17:00:00 UTC)
  • Matt Bromiley, Kasey Cross


  • Palo Alto Networks

You can now attend the webcast using your mobile device!



Cyberthreats can originate from any source and quickly evolve to evade detection, leaving security teams to learn about incidents after they occur. It's time to shift the advantage back to the organization and away from adversaries.

Extended detection and response (XDR) is security teams' secret weapon to uncover attacks and reduce incident response times. In this product review webcast, SANS instructor and security expert Matt Bromiley and Palo Alto Networks' Senior Product Marketing Manager Kasey Cross explore how Cortex XDR is transforming detection and response.

During this webcast, Matt and Kasey will discuss:

  • How XDR technology can upend traditional detection and response processes
  • Why detection and response must start with stellar prevention
  • The benefits of an easy-to-use interface that brings critical information, such as incident severity, actions taken and top concerns to the forefront
  • How analysts can easily transition from detection to response to prevention with intelligence-driven data points

Register today and be the first to receive the associated SANS product review of Cortex XDR written by Matt Bromiley.

Speaker Bios

Matt Bromiley

Matt Bromiley is a SANS digital forensics and incident response (IR) instructor, teaching FOR508 Advanced Incident Response, Threat Hunting, and Digital Forensics and SANS FOR572 Advanced Network Forensics: Threat Hunting, Analysis, and Incident Response. He is also an IR consultant at a global IR and forensic analysis company, combining experience in digital forensics, log analytics, and incident response and management. His skills include disk, database, memory and network forensics; incident management; threat intelligence and network security monitoring. Matt has worked with organizations of all shapes and sizes, from multinational conglomerates to small, regional shops. He is passionate about learning, teaching and working on open source tools.

Kasey Cross

Kasey Cross is a Senior Product Marketing Manager at Palo Alto Networks, focused on technologies that improve security operations. She has more than 10 years of experience in marketing positions at cybersecurity companies including Imperva, A10 Networks, and SonicWALL. Kasey was also the CEO of Menlo Logic and led the company through its successful acquisition by Cavium Networks. She graduated from Duke University.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.