Jaacostan

A few free courses which are offered by respective providers are listed below. Make use of these and up-skill yourself. Happy learning.  Update [27/10/2021] Free E-Book intended for beginners/Junior Engineers: Being a Firewall Engineer : An Operational Approach, Second Edition 2021 Promotion period :  October 28, 2021, 12:00 AM PDT to Saturday, October 30, 2021, 11:59 PM PDT Link : https://www.amazon.com/dp/B09K5ZBFTL The Microsoft Ignite Cloud Skills Challenge – November 2021 starts at November 2, 2021. By completing one challenge within the Microsoft Ignite Cloud Skills Challenge – November 2021, eligible individuals are entitled to one free Microsoft Certification exam. https://csc.docs.microsoft.com/Ignite/OfficialRules/Fall2021 Plenty of SAP related courses. https://open.sap.com/courses Learn AWS cloud for free [only training] https://explore.skillbuilder.aws/learn Learn Google cloud for free [only training] https://inthecloud.withgoogle.com/free-training-21/register.html   Upda

An incident in Palo Alto Cortex XSOAR can be created automatically or manually by a Security Analyst. Similarly, all the process mentioned below can be performed manually as well as automatically by initiating the playbook, when a particular condition is met. In order to create an incident automatically by the Cortex XSOAR, you need to configure integrations with your 3rd-party products such as SIEM, ticketing tools, logs servers, network devices, EDR etc to start fetching events. Then you have to determine how the events ingested from those integrations will be classified as incidents. This is known as Classification Mapping. Then you create the pre-processing rules that enable you to perform certain actions on incidents as they are ingested into Cortex XSOAR. The entire process from an incident getting created till to the Closure/Archiving is explained below. The lifecycle of an XSOAR managed incident consists of five phases: Creation Pending investigation Active investigation and re

You can deploy Palo Alto Cortex XSOAR in four ways.  1) On-Premises You can install Cortex XSOAR on a VM or bare-metal servers. In this installation model, the customer provisions, installs, configures, and maintains all aspects of the system while Palo Alto Networks provides support based on licensing. As of now, installation of Cortex XSOAR on CentOS, RedHat Enterprise Linux, Ubuntu, Oracle Linux, Amazon Linux 2, SUSE Linux Enterprise 12, openSUSE, and Fedora is supported.   2) Hosted Cloud In this model, Palo Alto Networks provisions and maintains the customer’s instance of the Cortex XSOAR server, which includes maintaining the OS, performing upgrades, providing high availability. The customer only needs to configure and maintain the Cortex SOAR from an application-layer level. Palo Alto Networks provides application support based on the license purchased. Only the Palo Alto Networks DevOps team has access to the OS. The cloud-hosted option is not a full security-as-a-service offer

BitLocker To Go is BitLocker Drive Encryption on removable data drives. This includes the encryption of USB flash drives, SD cards, external hard disk drives, and other drives formatted by using the NTFS, FAT16, FAT32, or exFAT file systems.As with BitLocker, drives that are encrypted using BitLocker To Go can be opened with a password or smart card on another computer by using BitLocker Drive Encryption in Control Panel. BitLockerAutoUnlock can be configured to automatically unlock volumes that do not host an operating system. After a user unlocks the operating system volume, BitLocker uses encrypted information stored in the registry and volume metadata to unlock any data volumes that use automatic unlocking.   Read more on Microsoft 365 and Azure Source : https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-overview

From the Security & Compliance admin center (https://protection.office.com) , select Threat management, and then select Explorer. From the upper righer corner, click on MDE settings ( As highlighted in the image below). Then in the Microsoft Defender ATP connection dialog box, turn on Connect to Windows ATP. Note: To turn on this connection, your organization must have a Microsoft Defender for Endpoint subscription and security analysts must have access to Defender for Office 365 P2 and Microsoft Defender for Endpoint.  

As per recent announcement from Microsoft, with label management in the Microsoft 365 compliance center now at parity with the AIP portal experience, Microsoft will sunset label management in the Azure portal as of March 31, 2021.Means, Azure Information Protection classic client and Label Management in the Azure Portal will be deprecated on March 31, 2021.     Step by step guide to transition to MIP If you are an existing AIP customer, Microsoft recommends the following steps to transition to MIP: Activate unified labeling from the Azure portal and migrate labels to the Microsoft 365 compliance center to apply policies uniformly across on-premises, Microsoft 365 cloud services and more. This transition has no impact on existing AIP clients, and administrators can perform this step right away. The process takes only a few minutes, depending on the number of labels and complexity  Copy the policies to the Microsoft 365 compliance center or create new policies there. Publish your