{"id":104256,"date":"2019-12-09T21:00:12","date_gmt":"2019-12-10T05:00:12","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=104256"},"modified":"2019-12-10T08:10:48","modified_gmt":"2019-12-10T16:10:48","slug":"cortex-xdr-2-0-features","status":"publish","type":"post","link":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/2019\/12\/cortex-xdr-2-0-features\/","title":{"rendered":"New Cortex XDR 2.0 Features Increase Flexibility"},"content":{"rendered":"

\"ACortex XDR 2.0, a significant evolution of the industry\u2019s most comprehensive platform for threat prevention, detection, investigation and response, is now available for use. In addition to the <\/span>major feature upgrades that we previewed on Nov. 13<\/span><\/a>, we are announcing several additional innovations that enable flexible customization of Cortex XDR, ensuring workflows that match the needs of your security analysts.<\/span><\/p>\n

 <\/p>\n

Public API and Multi-tenancy Support<\/b><\/p>\n

Cortex XDR 2.0 supports new public APIs that will be available to all customers. Security orchestration, automation and response (SOAR) tools like <\/span>Demisto<\/span><\/a> can now easily be integrated to automate responses and take actions on the endpoint and across your security toolkit. With this addition, you can retrieve and update incidents, collect agent information and contain endpoint threats from the management platform of your choice.\u00a0<\/span><\/p>\n

Cortex XDR 2.0 also introduces multi-tenancy for <\/span>managed detection and response (MDR) providers<\/span><\/a>, enabling management across customer environments with the easy customization for specific requirements, providing an avenue for further reduction of detection and response SLAs while maintaining the highest standards for customer data privacy.<\/span><\/p>\n

Multi-tenancy and public APIs open the door for MDR providers to bring their value-added services to customers faster than ever before, providing the most advanced managed security service offerings available on the market today.\u00a0<\/span><\/p>\n

 <\/p>\n

Dashboard and Report Customization<\/b><\/p>\n

Cortex XDR\u2019s management console not only delivers full, unified visibility into endpoint policy management, detection, investigation and response, but it now offers drag-and-drop dashboard customization. Your security analysts can quickly assess the security status of your organization using dashboards that are easily configured to meet each individual's specific needs. Additionally, they can now build customized graphical reports that can be scheduled or generated on-demand and tailored to different audiences such as SecOps leaders, CISOs, and executive management, keeping them in the loop on relevant information such as incident summaries and threat landscapes.<\/span><\/p>\n

 <\/p>\n

Extending Third-party Log Ingestion<\/b><\/p>\n

In November, we added the ability for Cortex XDR to ingest Check Point firewall logs to expand the scope of our powerful behavioral analytics to detect anomalies across mixed environments. Now, we\u2019ve further extended this industry-first capability to Cisco and Fortinet firewalls, allowing Cortex XDR to apply cutting-edge analytics across data generated by all major firewalls on the market.<\/span><\/p>\n

Other upgrades to Cortex XDR include a unified management interface, a revamped machine learning-driven local analysis engine on the endpoint, and device control for granular USB access management. All these innovations improve a platform that has already proven to deliver <\/span>best-in-class detection<\/span><\/a>, a 50x reduction in alert fatigue by grouping alerts into incidents, and an <\/span>8x reduction in investigation times<\/span><\/a>. Stay tuned, as we will continue to roll out new integrations and feature modules to further help you manage threats across your enterprise with speed, simplicity and confidence.<\/span><\/p>\n

Learn all the details you need to know about Cortex XDR 2.0:\u00a0 Watch the 18-minute streamcast, \u201c<\/span>The Future of Endpoint Security Starts Here<\/span><\/a>.\u201d\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

New Cortex XDR 2.0 features aim to enable flexible customization of Cortex XDR, ensuring workflows that match the needs of your security analysts.<\/p>\n","protected":false},"author":41,"featured_media":104271,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[6770],"tags":[6737,6735],"coauthors":[776],"class_list":["post-104256","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-secure-the-future","tag-cortex-xdr","tag-xdr"],"jetpack_featured_media_url":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-content\/uploads\/2019\/12\/image1-2.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/104256","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/comments?post=104256"}],"version-history":[{"count":7,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/104256\/revisions"}],"predecessor-version":[{"id":104289,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/104256\/revisions\/104289"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media\/104271"}],"wp:attachment":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media?parent=104256"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/categories?post=104256"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/tags?post=104256"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/coauthors?post=104256"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}