Welcome to our June 2023 Rewind, where we review some of LIVEcommunity’s biggest headlines from the past month! In June, we shared our survey participation badges, launched the audit date stamp and more! Read on to see community's June 2023 highlights. LIVEcommunity recently hosted one-on-one sessions and shared a survey with members, as part of an ongoing effort to improve community experience for our 200,000+ users from around the world. In response to their feedback, we have already made two exciting changes: increasing the number of posts displayed on all LIVEcommunity landing pages from five to fifteen and we have also introduced clickable clouds of top tags on each page that allows users to effortlessly explore popular content that aligns with their interests. For their awesome participation, our fabulous survey participants unlocked a super-cool new badge! This was just one fun way we wanted to say thank you. LIVEcommunity recently introduced a new feature to help you know when content has been reviewed for accuracy: the Audit Date Stamp. With this latest enhancement, you can now easily identify when an article has been audited, confirming that the information current, screenshots are up-to-date, and any solutions or use cases function as expected. LIVEcommunity aims to be a helpful, easy-to-use resource for Palo Alto Networks customers. In this video series, community members from around the world share their experience on LIVEcommunity, the importance of connecting with peers in cybersecurity, and what keeps them coming back. Check out our most recent testimonials. LIVEcommunity Member Testimonial: Mayur SutareIn his interview, Mayur shares that he likes to follow other LIVEcommunity members who have been particularly helpful to him. He follows individuals who post interesting articles and provide helpful answers, and he has configured his notification settings to notify him whenever they post new content. This allows him to stay updated on the latest information and news in the community. And even though he is Cyber Elite, he still finds it extremely helpful to follow other Cyber Elite members. LIVEcommunity Member Testimonial: Otakar KlierOtakar Klier is a Cyber Elite for the Palo Alto Networks LIVEcommunity and has been a customer of Palo Alto Networks since 2012. He relies on the LIVEcommunity to get answers to questions when he runs into issues with his Palo Alto Networks firewalls. These answers, he says, can come from a range of individuals including Palo Alto network support engineers, other customers, or partners. He finds the platform to be a great resource and is impressed by the willingness of the community to help and that searching is a big part of how he uses the platform. When security teams become inundated with an immensely high volume of alerts, their ability to react quickly and effectively to critical threats diminishes. Alert fatigue sets in as unfiltered and unmanaged incoming notifications persist. Unfortunately, many SOC team members are stuck manually reviewing alerts that aren’t vital to the business. In fact, 63% of threats reviewed in a typical workday are low priority or false positives. This leaves very little time and energy to triage and respond to high priority threats. In order to focus on alerts that really matter, we recommend creating starring policies within XDR to help your analysts filter and prioritize incoming alerts. Starring policies cut down on unnecessary alerts and eliminate redundancy as alerts are grouped into incidents for better correlation. This helps provide context around trends and reduce alert fatigue, allowing analysts to focus on other critical tasks. Read this blog to learn more about recent developments and major milestones we’ve achieved for organizations in 2023 with our Cloud NGFW, VM-Series virtual firewalls and CN-Series container firewalls. Each month brings to new episodes of PANCast, a Palo Alto Networks podcast, to our members! Check them out: PANCast Episode 19: Helping TAC Help You PANCast Episode 20: Threat Logs - AV Palo Alto Networks is releasing a new category called “Artificial Intelligence” under Advanced URL Filtering. Action will be required. The “Artificial Intelligence” category action is set to “Alert” only for the default profile. If you have multiple URL Filtering security profiles, it is recommended you change the default action to “Alert” for each of these profiles for better visibility and control. With AI and machine-learning at the forefront of innovation for Palo Alto Networks and Cortex, we are continuously finding new ways to improve and advance the modern SOC to revolutionize security operations. Today, we are proud to announce that Palo Alto Networks is introducing new AI-based active attack surface management capabilities within Cortex Xpanse in Xpander 2.2, as well as continuous refinement of the latest releases for our Cortex XSIAM 1.5, XDR 3.7 and XSOAR 8.3 solutions. This launch further expands the advanced capabilities of the entire Cortex Portfolio when it comes to AI and machine-learning capabilities. The latest features found in Xpander 2.2 will help organizations better prioritize and remediate attack surface risks by utilizing real-world intelligence and AI-assisted workflows. As we continue to scale, both in terms of traffic and in terms of the number of APIs (models/services) that we host, being cross compatible between cloud platforms (AWS/GCP/Azure) starts to become more of a priority. When we only had a few models and one model that needed to be run on an Accelerator, Inferentia (from AWS) was the best choice in terms of cost as well as latency. Upon adding on a few more APIs under our arsenal and into our overall offerings, the scalability aspect of inferentia became less important as it meant that we were tied to AWS, as it is the only cloud provider to offer Inferentia instances, and having the flexibility to move across cloud providers became more of a pressing priority. This left us with one viable option, which is moving over to using GPU instances as our accelerated instance. In today's fast-paced digital landscape, organizations face numerous challenges when it comes to remediating attack surface risks. One particular hurdle that plagues many businesses is identifying asset owners, a laborious and time-consuming process that involves coordination across multiple teams. However, with Cortex Xpanse's Active Response module and service owner identification capability, you will know exactly who owns an asset, making it easier to assign a remediation ticket. Find out more in this blog by Giuliana Sturma. June ‘23 Discussion Highlight: Posts With Accepted SolutionsNominated Discussions help LIVEcommunity Solutions Engineers highlight a discussion that has an Accepted Solution, and turn it into an article with additional helpful information, documentation, and clarity! Here are the Nominated Discussions we published this past month: You're now fully briefed on LIVEcommunity's June 2023 highlights! If this was helpful, be sure to give this blog a thumbs up. See you next month!
