* [Blog](https://www2.paloaltonetworks.com/blog)
* [Security Operations](https://www2.paloaltonetworks.com/blog/security-operations)
* Playbook of the Week

# Security Operations

## Playbook of the Week

[![A Day in the Life with Your AgentiX Automation Engineer Agent](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2026/01/AdobeStock_1246251272-scaled.jpeg)](https://www2.paloaltonetworks.com/blog/security-operations/a-day-in-the-life-with-your-agentix-automation-engineer-agent/)  
[A Day in the Life with Your AgentiX Automation Engineer Agent
\-------------------------------------------------------------](https://www2.paloaltonetworks.com/blog/security-operations/a-day-in-the-life-with-your-agentix-automation-engineer-agent/)

Stop coding, start conversing. Introducing the Automation Engineer Agent, your new AI partner for instant script generation in Cortex AgentiX  
[AI and Cybersecurity](https://www.paloaltonetworks.com/blog/security-operations/category/ai-and-cybersecurity/?ts=markdown)  
[Automation of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/automation-of-the-week/?ts=markdown)  
[Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown)  
[Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown)  
Feb 05, 2026  
By [Ron Ben Chen](https://www.paloaltonetworks.com/blog/author/ron-ben-chen/?ts=markdown "Posts by Ron Ben Chen")

## Security Operations

*** ** * ** ***

[Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown)

*** ** * ** ***

[Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown)

*** ** * ** ***

[Use-Cases](https://www.paloaltonetworks.com/blog/security-operations/category/use-cases/?ts=markdown)

*** ** * ** ***

[News and Events](https://www.paloaltonetworks.com/blog/security-operations/category/news-and-events/?ts=markdown)

*** ** * ** ***

[Partner Integrations](https://www.paloaltonetworks.com/blog/security-operations/category/partner-integrations/?ts=markdown)

*** ** * ** ***

[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

*** ** * ** ***

![Cortex AgentiX: A Behind-the-Scenes Perspective](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2026/01/Cortex-AgentiX-blog_400x300.png)  
[AI and Cybersecurity](https://www.paloaltonetworks.com/blog/security-operations/category/ai-and-cybersecurity/?ts=markdown), [Automation of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/automation-of-the-week/?ts=markdown), [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown)

## [Cortex AgentiX: A Behind-the-Scenes Perspective](https://www2.paloaltonetworks.com/blog/security-operations/cortex-agentix-a-behind-the-scenes-perspective/)

A behind-the-scenes look at how we build and manage agentic AI agents with Cortex AgentiX.  
Jan 08, 2026  
By [Ariel Blaier](https://www.paloaltonetworks.com/blog/author/ariel-blaier/?ts=markdown "Posts by Ariel Blaier") and [Jane Goh](https://www.paloaltonetworks.com/blog/author/jane-goh/?ts=markdown "Posts by Jane Goh")  
![Introducing the Cortex MCP Server](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/11/AdobeStock_739390615-scaled.jpeg)  
[AI and Cybersecurity](https://www.paloaltonetworks.com/blog/security-operations/category/ai-and-cybersecurity/?ts=markdown), [Automation of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/automation-of-the-week/?ts=markdown), [Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown)

## [Introducing the Cortex MCP Server](https://www2.paloaltonetworks.com/blog/security-operations/introducing-the-cortex-mcp-server/)

This blog introduces the new Cortex MCP, bringing real-time intelligence from XSIAM data to your preferred LLM application.  
Dec 04, 2025  
By [Abigael Levy](https://www.paloaltonetworks.com/blog/author/abigal-levy/?ts=markdown "Posts by Abigael Levy") and [Tarin Waizman](https://www.paloaltonetworks.com/blog/author/tarin-waizman/?ts=markdown "Posts by Tarin Waizman")  
![Rapid Response to CVE-2025-31324: Mitigating SAP NetWeaver Visual Composer Exploitation](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/05/iStock-1149529036-edit-1280x1280-1.jpeg)  
[Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [News and Events](https://www.paloaltonetworks.com/blog/security-operations/category/news-and-events/?ts=markdown), [Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [Rapid Response to CVE-2025-31324: Mitigating SAP NetWeaver Visual Composer ...](https://www2.paloaltonetworks.com/blog/security-operations/rapid-response-to-cve-2025-31324-mitigating-sap-netweaver-visual-composer-exploitation/)

Protect against SAP NetWeaver's critical CVE-2025-31324 vulnerability with Cortex XSIAM's automated detection and response playbook for identifying an...  
May 15, 2025  
By [Sasha Sokolovich](https://www.paloaltonetworks.com/blog/author/sasha-sokolovich/?ts=markdown "Posts by Sasha Sokolovich")  
![What’s New for Cortex and Cortex Cloud (Apr ‘25)](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/05/iStock-1135341681-edit.jpg)  
[Must-Read Articles](https://www.paloaltonetworks.com/blog/security-operations/category/must-read-articles/?ts=markdown), [News and Events](https://www.paloaltonetworks.com/blog/security-operations/category/news-and-events/?ts=markdown), [Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [What's New for Cortex and Cortex Cloud (Apr '25)](https://www2.paloaltonetworks.com/blog/security-operations/whats-new-for-cortex-and-cortex-cloud-apr-25/)

Discover cutting-edge advancements in security ops with the latest Cortex releases. New features enhance threat prevention, platform coverage, automation, and attack surface tests for streamlined and robust sec...  
May 05, 2025  
By [Scott Simkin](https://www.paloaltonetworks.com/blog/author/scott-simkin/?ts=markdown "Posts by Scott Simkin")  
![Playbook Creation Reimagined: The Intuitive Approach to Security Automation](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/05/Portrait-of-Young-Man-LI.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [Playbook Creation Reimagined: The Intuitive Approach to Security Automation](https://www2.paloaltonetworks.com/blog/security-operations/playbook-creation-reimagined-the-intuitive-approach-to-security-automation/)

Continuing to innovate on our market-leading SOAR to simplify security operations, ensure ease of use in the adoption of automation.  
May 01, 2025  
By [Alon Yardeni](https://www.paloaltonetworks.com/blog/author/alon-yardeni/?ts=markdown "Posts by Alon Yardeni")  
![Creating an Automated Workflow for Account Lockout Resolution](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/04/Woman-Working-at-Computer-1.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [Creating an Automated Workflow for Account Lockout Resolution](https://www2.paloaltonetworks.com/blog/security-operations/creating-an-automated-workflow-for-account-lockout-resolution/)

This playbook automates and speeds up response to excessive user account lockouts, which could indicate a credential-based attack.  
Apr 10, 2025  
By [Ido Van Dijk](https://www.paloaltonetworks.com/blog/author/ido-van-dijk/?ts=markdown "Posts by Ido Van Dijk")  
![Automating Response to Unauthorized Scheduled Task Executions](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/02/iStock-1249211557-edit-1280x1280-1-472x300-1.jpeg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown), [Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown)

## [Automating Response to Unauthorized Scheduled Task Executions](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-unauthorized-scheduled-task-executions/)

Discover how Cortex XSIAM automates detection and response to malicious scheduled tasks that reference external HTTP/FTP sources for improved security...  
Apr 03, 2025  
By [Omri Itzhak](https://www.paloaltonetworks.com/blog/author/omri-itzhak/?ts=markdown "Posts by Omri Itzhak")  
![Automating Response to Unauthorized Tor Logins](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/03/Double-Checking-2.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown), [Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown)

## [Automating Response to Unauthorized Tor Logins](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-unauthorized-tor-logins/)

The A Successful Login from Tor playbook in Cortex XSIAM enhances security teams' ability to detect and respond to unauthorized access attempts using Tor. By automating identity verification, automated remediat...  
Mar 27, 2025  
By [Arik Day](https://www.paloaltonetworks.com/blog/author/arik-day/?ts=markdown "Posts by Arik Day")  
![Automating Response to Suspicious Process Executions](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2024/07/NetSec-Adhoc-Updated-Blog-Image-Resize-508484039-3.png)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown), [Unkategorisiert](https://www.paloaltonetworks.com/blog/category/unkategorisiert/?lang=ja&ts=markdown)

## [Automating Response to Suspicious Process Executions](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-suspicious-process-executions/)

This playbook automates the investigation and response to suspicious process executions triggered by a scheduled task.  
Mar 20, 2025  
By [Omri Itzhak](https://www.paloaltonetworks.com/blog/author/omri-itzhak/?ts=markdown "Posts by Omri Itzhak")  
![Automated Rapid Response to Suspicious Remote Scheduled Task Creation](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2024/10/cq5dam.web_.1280.1280-1.jpeg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [Automated Rapid Response to Suspicious Remote Scheduled Task Creation](https://www2.paloaltonetworks.com/blog/security-operations/automated-rapid-response-to-suspicious-remote-scheduled-task-creation/)

This playbook automates the identification and remediation of persistent threats that leverage scheduled tasks to execute malicious payloads across endpoints.  
Mar 13, 2025  
By [Omri Itzhak](https://www.paloaltonetworks.com/blog/author/omri-itzhak/?ts=markdown "Posts by Omri Itzhak")  
![Announcing Unit 42 Managed XSIAM — Redefining 24/7 Managed SecOps](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/03/GettyImages-580501671-edit-1.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [Unit 42](https://www.paloaltonetworks.com/blog/category/unit42/?ts=markdown)

## [Announcing Unit 42 Managed XSIAM --- Redefining 24/7 Managed SecOps](https://www2.paloaltonetworks.com/blog/2025/03/announcing-unit-42-managed-xsiam/)

Palo Alto Networks announces Unit 42 Managed XSIAM, a solution that provides 24/7 expert-led defense across every attack surface.  
Mar 11, 2025  
By [Sharon Maydar](https://www.paloaltonetworks.com/blog/author/sharon-maydar/?ts=markdown "Posts by Sharon Maydar")  
![Automating Response to Suspicious SaaS Access From a Tor Exit Node](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/03/Coding-10.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [Automating Response to Suspicious SaaS Access From a Tor Exit Node](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-suspicious-saas-access-from-a-tor-exit-node/)

This playbook shows how a SecOps team can use Cortex XSIAM to automate and speed response to suspicious SaaS access alerts involving a Tor exit node.  
Mar 06, 2025  
By [Arik Day](https://www.paloaltonetworks.com/blog/author/arik-day/?ts=markdown "Posts by Arik Day") [](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-credential-dumping-attacks/)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown), [Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown)

## [Automating Response to Credential Dumping Attacks](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-credential-dumping-attacks/)

Automated playbook designed to detect, contain and remediate credential dumping activity.  
Feb 27, 2025  
By [Omri Itzhak](https://www.paloaltonetworks.com/blog/author/omri-itzhak/?ts=markdown "Posts by Omri Itzhak")  
![Automating Response to Unauthorized User Account Creation](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/02/Man-Working-2-1.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [Automating Response to Unauthorized User Account Creation](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-unauthorized-user-account-creation/)

This playbook automates incident response actions to identify, investigate, and remediate unauthorized hidden user account creation.  
Feb 20, 2025  
By [Ido Van Dijk](https://www.paloaltonetworks.com/blog/author/ido-van-dijk/?ts=markdown "Posts by Ido Van Dijk")  
[](https://www2.paloaltonetworks.com/blog/security-operations/sso-password-spray-playbook/)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [SSO Password Spray Playbook](https://www2.paloaltonetworks.com/blog/security-operations/sso-password-spray-playbook/)

Learn how to detect and prevent SSO password spray attacks with our comprehensive security playbook. Automate response and strengthen authentication security.  
Feb 13, 2025  
By [Karina Fishman](https://www.paloaltonetworks.com/blog/author/karina-fishman/?ts=markdown "Posts by Karina Fishman")  
![Automating Response to Unauthorized User Privilege Escalations Using PowerShell Commands](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/02/Collaborate-4.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [Automating Response to Unauthorized User Privilege Escalations Using PowerS...](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-unauthorized-user-privilege-escalations-using-powershell-commands/)

Automating response to unauthorized privilege escalation activity such as a user being added to local administrator group using a PowerShell command  
Feb 05, 2025  
By [Omri Itzhak](https://www.paloaltonetworks.com/blog/author/omri-itzhak/?ts=markdown "Posts by Omri Itzhak")  
![Automating Response to Multi-Factor Authentication Threats](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/01/Man-working-7.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown)

## [Automating Response to Multi-Factor Authentication Threats](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-multi-factor-authentication-threats/)

SEO Meta description Cortex XSIAM automated playbook addressing user rejected numerous SSO MFA attempts  
Jan 30, 2025  
By [Tomer Haimof](https://www.paloaltonetworks.com/blog/author/tomer-haimof/?ts=markdown "Posts by Tomer Haimof")  
![Automating Response to Unauthorized Email Forwarding Activity in Google Workspace](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/01/Working-with-a-View-1.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown)

## [Automating Response to Unauthorized Email Forwarding Activity in Google Wor...](https://www2.paloaltonetworks.com/blog/security-operations/automating-response-to-unauthorized-email-forwarding-activity-in-google-workspace/)

Automating response to "A mail forwarding rule was configured in Google Workspace" with Cortex XSIAM  
Jan 28, 2025  
By [Arik Day](https://www.paloaltonetworks.com/blog/author/arik-day/?ts=markdown "Posts by Arik Day")  
![Automate Response to Event Log Clearing Alerts with Cortex XSIAM](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/01/NetSec-Adhoc-Updated-Blog-Image-Resize-905545264-1.png)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown), [Uncategorized](https://www.paloaltonetworks.com/blog/category/uncategorized/?ts=markdown)

## [Automate Response to Event Log Clearing Alerts with Cortex XSIAM](https://www2.paloaltonetworks.com/blog/security-operations/automate-response-to-event-log-clearing-alerts-with-cortex-xsiam/)

Automating response to potentially malicious event logs clearing activity with Cortex XSIAM  
Jan 16, 2025  
By [Sasha Sokolovich](https://www.paloaltonetworks.com/blog/author/sasha-sokolovich/?ts=markdown "Posts by Sasha Sokolovich")  
![Handling Successful SSO Sign-ins from Tor](https://www2.paloaltonetworks.com/blog/wp-content/uploads/2025/01/I-See-6.jpg)  
[Playbook of the Week](https://www.paloaltonetworks.com/blog/security-operations/category/playbook-of-the-week/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/security-operations/category/product-features/?ts=markdown)

## [Handling Successful SSO Sign-ins from Tor](https://www2.paloaltonetworks.com/blog/security-operations/handling-successful-sso-sign-ins-from-tor/)

Automating response to successful Tor SSO sign-ins with Cortex XSIAM  
Jan 09, 2025  
By [Omri Itzhak](https://www.paloaltonetworks.com/blog/author/omri-itzhak/?ts=markdown "Posts by Omri Itzhak")  
Load more blogs  
Load more blogs

### Subscribe to Security Operations Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language