News Summary:

• Cortex XSIAM shifts paradigm so that third-party EDR data is as easily ingestible as first-party data
• Cortex XSIAM's BYOML framework empowers custom ML models for tailored security solutions
• Cortex XSIAM expands cloud detection and response capabilities for complete visibility and protection

SANTA CLARA, Calif., May 7, 2024 /PRNewswire/ -- Cortex XSIAM from Palo Alto Networks (NASDAQ: PANW) is the AI-driven security operations platform that enables organizations to transform their security operations with a unified platform that delivers all critical capabilities in one powerful solution. Today, the global cybersecurity leader announced the ability for customers to integrate their own custom machine learning models, seamlessly integrating third-party EDR data and also leveraging cloud detection and response capabilities. Cortex XSIAM now offers Palo Alto Networks customers the flexibility and customization to create a security solution that aligns perfectly with their organization's goals.

"Data silos and manual repetition can't handle the speed of today's threats — a new approach is needed. Our customers are seeing transformative security outcomes; with Cortex XSIAM, large multinational companies have gone from a mean time to remediation (MTTR) of days down to minutes," said Lee Klarich, chief product officer at Palo Alto Networks. "From expanding our AI capabilities with BYOML, to opening data sources to treat third-party data as first party, and expanding to cloud, we continue to drive innovation with Cortex XSIAM to enable the SOC with the platform it needs to secure the entire enterprise."

Cortex XSIAM allows organizations to simplify security operations with an integrated platform: The integration of SOC capabilities, such as SIEM, XDR, SOAR and ASM, into a single platform is a game changer for security operations. With Cortex XSIAM, organizations get dramatically better security and turbocharged SOC performance.

XSIAM empowers organizations to take control of their security by offering a host of innovative features, including:

Cortex XSIAM for Third-Party EDR Telemetry allows qualifying organizations to adopt Cortex XSIAM without immediately replacing their existing EDR. This enables the ingestion of third-party EDR data into XSIAM, with the cost of ingestion credited for up to two years or until the EDR contract expires, when customers are able to migrate away from legacy EDR solutions and fully leverage the integrated XDR capability of Cortex XSIAM to realize optimal security outcomes.

Cortex XSIAM offers a Bring Your Own Machine Learning (BYOML) framework. Cortex XSIAM ingests vast amounts of security data across hundreds of supported sources to enable better out-of-the-box AI/ML analytics. For the first time, SOCs can take advantage of this data lake to create and customize ML models using a bring your own ML capability. Not every security use case is created equal, that's why enabling organizations to integrate custom ML models for those unique scenarios, incident management and data visualization requirements is key to their success.

Cortex XSIAM introduces Cloud Detection and Response (CDR) capabilities, providing visibility into cloud assets, incidents, coverage and vulnerabilities as well as integrations with Prisma Cloud for enhanced incident grouping and navigation. With the unified user interface provided by XSIAM, security analysts can efficiently and effectively respond to cloud-based threats, enhancing situational awareness and bolstering their overall security posture.

At the heart of CDR are three major innovations that will be available to Cortex XSIAM customers:

• Cloud Command Center: Within the same unified UI that SOC analysts use for enterprise security in Cortex XSIAM, customers can now have full visibility into cloud assets, incidents, coverage, and vulnerabilities, enabling situational awareness and efficient and complete response to cloud threats.
• Security Agent across Cortex and Prisma Cloud platforms: The new agent combines Prisma Cloud's comprehensive vulnerability and compliance management capabilities with Cortex's best-in-class runtime security and threat protection. On top of improving security outcomes, the new agent drastically simplifies deployment and operations across the entire security program.
• Integration with Prisma Cloud: Prisma Cloud further enriches the capabilities delivered through the Cloud Command Center with granular alerts and asset information, giving broader context, detailed incident grouping, and easier navigation to assets.

Moreover, XSIAM boasts over 1,000 integrations covering commonly used SOC tools for automated alert ingestion and orchestration of workflows, enabling SOCs to optimize processes and interactions across their entire security program.

"Our research indicates that despite continuing focus on consolidation efforts, 86% of security stacks still rely on ten or more tools, prompting 98% to continue efforts to further consolidate and integrate their security operations tools," said Dave Gruber, principal cybersecurity analyst at Enterprise Strategy Group. "Emerging security platforms like Cortex XSIAM are helping organizations achieve consolidation objectives, as they add the ability to ingest third-party EDR telemetry and even absorb migration costs from legacy EDR solutions."

Register to attend: From 2:30-4 p.m. PDT today, May 7, 2024, join Palo Alto Networks Chairman and CEO Nikesh Arora for a virtual event: Prepare for a Brand-New Fight, and dive into these cutting-edge technologies and advancements in AI and cybersecurity.

Cyber Defense Magazine this week recognized Palo Alto Networks, awarding 11 of its coveted Global InfoSec Awards for 2024 to the company. This included naming Cortex XSIAM as Hot Company in Cybersecurity AI and Cortex XDR as Editor's Choice in Extended Detection and Response. Winners were named Monday, May 6, 2024, during the RSA Conference.

To learn more about Cortex XSIAM and its complete security solution, please visit www.paloaltonetworks.com/cortex/cortex-xsiam.

To learn more about Precision AI by Palo Alto Networks, please visit https://www.paloaltonetworks.com/precision-ai-security.

About Palo Alto Networks
Palo Alto Networks is the world's cybersecurity leader. We innovate to outpace cyberthreats, so organizations can embrace technology with confidence. We provide next-gen cybersecurity to thousands of customers globally, across all sectors. Our best-in-class cybersecurity platforms and services are backed by industry-leading threat intelligence and strengthened by state-of-the-art automation. Whether deploying our products to enable the Zero Trust Enterprise, responding to a security incident, or partnering to deliver better security outcomes through a world-class partner ecosystem, we're committed to helping ensure each day is safer than the one before. It's what makes us the cybersecurity partner of choice.

At Palo Alto Networks, we're committed to bringing together the very best people in service of our mission, so we're also proud to be the cybersecurity workplace of choice, recognized among Newsweek's Most Loved Workplaces (2023, 2022, 2021), with a score of 100 on the Disability Equality Index (2023, 2022), and HRC Best Places for LGBTQ+ Equality (2022). For more information, visit www.paloaltonetworks.com.

Palo Alto Networks, Cortex, Cortex XSIAM, Cortex XDR, Prisma, Precision AI, and the Palo Alto Networks logo are trademarks of Palo Alto Networks, Inc. in the United States and in jurisdictions throughout the world. All other trademarks, trade names, or service marks used or mentioned herein belong to their respective owners.

This press release contains forward-looking statements that involve risks, uncertainties and assumptions, including, without limitation, statements regarding the benefits, impact, or performance or potential benefits, impact or performance of our products and technologies. These forward-looking statements are not guarantees of future performance, and there are a significant number of factors that could cause actual results to differ materially from statements made in this press release. We identify certain important risks and uncertainties that could affect our results and performance in our most recent Annual Report on Form 10-K, our most recent Quarterly Report on Form 10-Q, and our other filings with the U.S. Securities and Exchange Commission from time-to-time, each of which are available on our website at investors.paloaltonetworks.com and on the SEC's website at www.sec.gov. All forward-looking statements in this [press release are based on information available to us as of the date hereof, and we do not assume any obligation to update the forward-looking statements provided to reflect events that occur or circumstances that exist after the date on which they were made.

View original content to download multimedia:https://www.prnewswire.com/news-releases/palo-alto-networks-unveils-enhanced-flexibility-and-customization-with-cortex-xsiam-the-precision-ai-powered-soc-platform-302137928.html

SOURCE Palo Alto Networks, Inc.

press@paloaltonetworks.com