Rapid Incident ResponseiCAL Export
Test - Rapid Incident Response with Cisco XDR
In today’s fast-paced threat landscape, organizations face sophisticated cyberattacks targeting endpoints, networks, and email systems. The ability to rapidly detect, investigate, and respond to incidents across multiple vectors is vital for maintaining a strong security posture.
This hands-on workshop is designed to empower security professionals with the practical knowledge and skills needed to orchestrate a rapid and effective incident response strategy using Cisco’s integrated security solutions, as well as Microsoft Defender for endpoint protection. The session emphasizes the importance of securing email as a primary attack vector, alongside endpoint and network security.
Participants will gain hands-on experience with a powerful ecosystem of tools, including Cisco XDR, Secure Endpoint, Umbrella, Secure Malware Analytics, Cisco Firewalls, Cisco Email Threat Defense, and Threat Intelligence. Additionally, we’ll explore how to seamlessly integrate these tools with Microsoft Defender to create a unified, robust security strategy.
Workshop Highlights:
This workshop will provide practical, hands-on experience with:
- Cisco XDR: Consolidate and analyze telemetry from across your security ecosystem to enable faster detection and response.
- Cisco Secure Endpoint: Detect and mitigate endpoint threats with advanced EDR capabilities powered by real-time analytics.
- Cisco Umbrella: Protect users from malicious domains, phishing, and malware with DNS-layer security and secure web gateway features.
- Cisco Secure Malware Analytics: Conduct in-depth malware analysis to uncover sophisticated threats and generate actionable intelligence.
- Cisco Firewall: Strengthen perimeter defenses with comprehensive threat protection and policy enforcement.
- Cisco Email Threat Defense: Secure email, the most targeted attack vector, by identifying and blocking phishing, business email compromise (BEC), and malicious attachments.
- Threat Intelligence: Leverage actionable threat intelligence to enhance your ability to detect and respond to emerging threats.
- Microsoft Defender for Endpoint: Integrate and utilize Microsoft Defender to ensure seamless endpoint protection across hybrid environments.
Key Takeaways:
- Build a unified, streamlined incident response strategy across email, endpoint, network, and cloud environments.
- Gain practical experience with Cisco XDR and its integration with endpoint, email, and network security tools.
- Learn to operationalize threat intelligence to improve detection and accelerate response times.
- Explore real-world workflows for detecting, analyzing, and neutralizing advanced threats, including ransomware, phishing, and malware.
- Discover best practices for integrating Microsoft Defender with Cisco’s security solutions to create a multi-layered defense strategy.
Who Should Attend:
- Security Operations Center (SOC) analysts
- Incident response teams
- Cybersecurity engineers and architects
- IT professionals responsible for securing enterprise environments
Workshop Format:
- Duration: 4-6 hours (customizable based on audience needs)
- Structure:
- Interactive presentations and demonstrations
- Hands-on labs with guided exercises
- Live threat simulations and response workflows
Prerequisites:
- You will need to bring a laptop for this hands-on workshop
- Basic understanding of cybersecurity concepts and frameworks.
- Familiarity with endpoint, email, and network security tools is helpful but not required.
- Ensure you are able to access https://ciscosecurityworkshop.com/ portal or else ask your IT Admin to allow this URL: https://ciscosecurityworkshop.com/ . If not possible, please bring your personal Laptop.
- The workshop uses a Microsoft tenant (ciscothreathunting.ninja). This tenant should be allowed and tenant restrictions should not be applied.
- A dual monitor / screen would be helpful for the workshop but not essential.
Why Attend?
This workshop provides a unique opportunity to strengthen your incident response capabilities by mastering the integration of Cisco and Microsoft security solutions. Learn how to secure your organization’s email systems, endpoints, and network infrastructure against today’s most sophisticated cyber threats. With actionable insights and guided hands-on labs, you’ll leave with the confidence to rapidly detect, investigate, and respond to threats across multiple attack surfaces.
| Event Date | 2025-09-15 |
| Event Location Timezone | Europe/Amsterdam |
| Event Start Time | 10:00 AM |
| Event End Time | 4:00 PM |
| Capacity | 20 |
| Registered | 0 |
| Available Place | 20 |
| Created By | Rene Straube |
| Workshop Length in Hours | 6 |
| Geolocation: | emea |
| Type of event: | sales |
| Location | Cisco Office Berlin |
UNC Pembroke RIR
🎯 Mission Briefing: Kick off your adventure with a hands-on lab designed to enhance your investigation and incident response expertise.
🌐 Defend against sophisticated APTs with Cisco XDR: Learn how to empower your teams to go from endless investigation to remediating the highest priority incidents with greater speed, efficiency, and confidence. We will explore how to:
· Identify patterns and correlations in threat activity with root cause and attack chain analysis
· Leverage machine learning to prioritize incidents based on risk and impact
· Elevate productivity with automation and guidance
🍽️ Refuel and Recharge: All that work sure works up an appetite! Join us for lunch to seize networking opportunities within the cybersecurity community and cultivate valuable connections
| Event Date | 2025-09-15 |
| Event Location Timezone | America/New_York |
| Event Start Time | 10:00 AM |
| Event End Time | 5:00 PM |
| Capacity | 30 |
| Registered | 0 |
| Available Place | 30 |
| Created By | Jake Ruddy |
| Workshop Length in Hours | 4 |
| Geolocation: | amer |
| Type of event: | sales |
| Location | UNC Pembroke |
Cisco XDR - Logicalis Chile
Hola equipo Logicalis.
Estaremos desarrollando el Workshop de Rapid Incident Response with Cisco XDR para familiarizar los participantes con esta herramienta de Seguridad para el SOC.
Saludos.
Helmuth Meléndez.
| Event Date | 2025-09-16 |
| Event Location Timezone | America/Santiago |
| Event Start Time | 8:00 AM |
| Event End Time | 12:00 PM |
| Capacity | 25 |
| Registered | 0 |
| Available Place | 25 |
| Created By | Helmuth Melendez |
| Workshop Length in Hours | 5 |
| Geolocation: | amer |
| Type of event: | sales |
| Webex URL | cisco.webex.com/join/hmelende |
| Location | Logicalis Chile |
| Event Date | 2025-09-17 |
| Event Location Timezone | America/Vancouver |
| Event Start Time | 12:00 AM |
| Event End Time | 11:55 PM |
| Capacity | 20 |
| Registered | 0 |
| Available Place | 20 |
| Created By | Barry Yuan |
| Geolocation: | amer |
| Type of event: | sales |
| Location | Cisco Office Vancouver |
RIR_SanJose_17Sep25
Cisco Fire Jumper Breach Base Tour San Jose RIR - Sep 17-18 2025
| Event Date | 2025-09-17 |
| Event Location Timezone | America/Los_Angeles |
| Event Start Time | 8:00 AM |
| Event End Time | 6:00 PM |
| Capacity | 30 |
| Registered | 0 |
| Available Place | 30 |
| Created By | Eddie Mendonca |
| Geolocation: | amer |
| Type of event: | sales |
| Location | Cisco Office San Jose |
Rapid Incident Response Workshop
Rapid Incident Response with Cisco XDR
In the heat of a crisis, every keystroke counts, and indecision could cost your organization millions. What separates security pros from security liabilities? A plan – and practice. Join us for this hands-on Rapid Incident Response with Cisco XDR Workshop to develop your skills and test your abilities.
Don’t miss your chance to:
Develop your skills: Learn how to scope, contain, and eradicate threats like a pro. Enhance your Digital Forensics and Incident Response and threat hunting expertise with greater speed, efficiency and confidence in our hands-on virtual lab.
Test your abilities: Put your skills to the test by:
- Identifying patterns and correlations in threat activity with root cause and attack chain analysis
- Leveraging machine learning to prioritize incidents based on risk and impact
- Elevating productivity with automated and guided remediations
Whether you are an experienced cybersecurity professional or a beginner, this workshop guarantees a mix of education, excitement, and engaging content. Seize the chance, upskill, and leave no incident undetected. Secure your spot now and leave with a clear plan to take back to your organization.
| Event Date | 2025-09-23 |
| Event Location Timezone | UTC |
| Event Start Time | 10:00 AM |
| Event End Time | 11:00 PM |
| Capacity | 20 |
| Registered | 3 |
| Available Place | 17 |
| Created By | Jennifer Porres |
| Workshop Length in Hours | 4 |
| Geolocation: | emea |
| Type of event: | marketing |
| Event Date | 2025-09-24 |
| Event Location Timezone | America/Denver |
| Event Start Time | 12:00 AM |
| Event End Time | 11:00 PM |
| Capacity | 50 |
| Registered | 0 |
| Available Place | 50 |
| Created By | Charles Kim |
| Geolocation: | amer |
| Type of event: | sales |
| Location | Cisco Boulder |
Rapid Incident Response Workshop
Rapid Incident Response with Cisco XDR
In the heat of a crisis, every keystroke counts, and indecision could cost your organization millions. What separates security pros from security liabilities? A plan – and practice. Join us for this hands-on Rapid Incident Response with Cisco XDR Workshop to develop your skills and test your abilities.
Don’t miss your chance to:
Develop your skills: Learn how to scope, contain, and eradicate threats like a pro. Enhance your Digital Forensics and Incident Response and threat hunting expertise with greater speed, efficiency and confidence in our hands-on virtual lab.
Test your abilities: Put your skills to the test by:
- Identifying patterns and correlations in threat activity with root cause and attack chain analysis
- Leveraging machine learning to prioritize incidents based on risk and impact
- Elevating productivity with automated and guided remediations
Whether you are an experienced cybersecurity professional or a beginner, this workshop guarantees a mix of education, excitement, and engaging content. Seize the chance, upskill, and leave no incident undetected. Secure your spot now and leave with a clear plan to take back to your organization.
| Event Date | 2025-09-24 |
| Event Location Timezone | America/Los_Angeles |
| Event Start Time | 10:00 AM |
| Event End Time | 11:00 PM |
| Capacity | 20 |
| Registered | 8 |
| Available Place | 12 |
| Created By | Jennifer Porres |
| Workshop Length in Hours | 4 |
| Geolocation: | amer |
| Type of event: | marketing |
| Location | Virtual |
Rapid Incident Response with Cisco XDR, Prague 30.09.2025
In the heat of a crisis, every keystroke counts, and indecision could cost your organization millions. What separates security pros from the security liabilities? A plan - and a practice!
Join this hands-on Rapid Incident Response workshop with Cisco XDR to develop your skills and test your abilities.
Develop your skills
· Learn how to scope, contain and eradicate a threat like a pro.
· Enhance your Digital Forensics and Incident Response and Threat Detection expertise with greater speed, efficiency and confidence in our hands-on virtual lab.
Test your abilities
Put your skills to the test by:
· Identifying patterns and correlations in threat activity with root cause and attack chain analysis
· Leveraging machine learning to prioritize incidents based on risk and impact
· Elevating productivity with automated and guided remediations
| Event Date | 2025-09-30 |
| Event Location Timezone | Europe/Prague |
| Event Start Time | 8:00 AM |
| Event End Time | 6:00 PM |
| Capacity | 35 |
| Registered | 0 |
| Available Place | 35 |
| Created By | Gregor Simenc |
| Workshop Length in Hours | 9 |
| Geolocation: | emea |
| Type of event: | sales |
| Location | Cisco Office Prague |
| Event Date | 2025-10-02 |
| Event Location Timezone | America/New_York |
| Event Start Time | 4:00 AM |
| Event End Time | 6:00 PM |
| Capacity | 30 |
| Registered | 0 |
| Available Place | 30 |
| Created By | Bong dela Cruz |
| Geolocation: | amer |
| Type of event: | sales |
| Location | Toronto Office |
| Event Date | 2025-10-08 |
| Event Location Timezone | America/Detroit |
| Event Start Time | 5:00 AM |
| Event End Time | 11:55 PM |
| Capacity | 20 |
| Registered | 0 |
| Available Place | 20 |
| Created By | Barry Yuan |
| Geolocation: | amer |
| Type of event: | sales |
| Location | Cisco Montreal Office |
Rapid Incident Response with Cisco XDR Diegem Office
The Cisco XDR Rapid Incident Response workshop gives you the opportunity to explore advanced features of the XDR platform and experience a day in the life of an incident responder. Join this workshop to work through an XDR investigation and explore data and incidents correlated in XDR via events and observations from integrated products like Secure Endpoint, Email Threat Defense, and other SaaS-based tools.
Prerequisites:
If you have no experience with Cisco XDR, we suggest that you take some time to familiarize yourself with the platform using the self-paced demo: https://learn-cloudsecurity.cisco.com/cisco-xdr-product-tour
You can also complete the XDR learning path in the Cisco XDR Training Center: https://learnxdr.cisco.com/
| Event Date | 2025-10-10 |
| Event Location Timezone | UTC |
| Event Start Time | 9:30 AM |
| Event End Time | 2:00 PM |
| Capacity | 15 |
| Registered | 1 |
| Available Place | 14 |
| Created By | Mark Pleunes |
| Location | Cisco Office Diegem |
Rapid Incident Response Workshop
Rapid Incident Response with Cisco XDR
In the heat of a crisis, every keystroke counts, and indecision could cost your organization millions. What separates security pros from security liabilities? A plan – and practice. Join us for this hands-on Rapid Incident Response with Cisco XDR Workshop to develop your skills and test your abilities.
Don’t miss your chance to:
Develop your skills: Learn how to scope, contain, and eradicate threats like a pro. Enhance your Digital Forensics and Incident Response and threat hunting expertise with greater speed, efficiency and confidence in our hands-on virtual lab.
Test your abilities: Put your skills to the test by:
- Identifying patterns and correlations in threat activity with root cause and attack chain analysis
- Leveraging machine learning to prioritize incidents based on risk and impact
- Elevating productivity with automated and guided remediations
Whether you are an experienced cybersecurity professional or a beginner, this workshop guarantees a mix of education, excitement, and engaging content. Seize the chance, upskill, and leave no incident undetected. Secure your spot now and leave with a clear plan to take back to your organization.
| Event Date | 2025-10-21 |
| Event Location Timezone | America/New_York |
| Event Start Time | 10:00 AM |
| Event End Time | 11:00 PM |
| Capacity | 30 |
| Registered | 0 |
| Available Place | 30 |
| Created By | Jennifer Porres |
| Workshop Length in Hours | 4 |
| Geolocation: | amer |
| Type of event: | marketing |
| Location | Top Golf - Nashville |
Rapid Incident Response Workshop
Rapid Incident Response with Cisco XDR
In the heat of a crisis, every keystroke counts, and indecision could cost your organization millions. What separates security pros from security liabilities? A plan – and practice. Join us for this hands-on Rapid Incident Response with Cisco XDR Workshop to develop your skills and test your abilities.
Don’t miss your chance to:
Develop your skills: Learn how to scope, contain, and eradicate threats like a pro. Enhance your Digital Forensics and Incident Response and threat hunting expertise with greater speed, efficiency and confidence in our hands-on virtual lab.
Test your abilities: Put your skills to the test by:
- Identifying patterns and correlations in threat activity with root cause and attack chain analysis
- Leveraging machine learning to prioritize incidents based on risk and impact
- Elevating productivity with automated and guided remediations
Whether you are an experienced cybersecurity professional or a beginner, this workshop guarantees a mix of education, excitement, and engaging content. Seize the chance, upskill, and leave no incident undetected. Secure your spot now and leave with a clear plan to take back to your organization.
| Event Date | 2025-10-23 |
| Event Location Timezone | America/Los_Angeles |
| Event Start Time | 10:00 AM |
| Event End Time | 11:00 PM |
| Capacity | 20 |
| Registered | 2 |
| Available Place | 18 |
| Created By | Jennifer Porres |
| Workshop Length in Hours | 4 |
| Geolocation: | amer |
| Type of event: | marketing |
| Location | Virtual |
Port53 | Cisco XDR Rise of the SNOC Workshop
Today’s most advanced attacks come through multiple attack vectors and operations teams need multiple correlated telemetry sources to detect and respond to those threats. And while some SecOps teams have the resources at their disposal to build and staff highly integrated SIEM solutions, most do not, leaving them unequipped to adequately protect their organizations. In an attempt to bridge this gap, some EDR vendors have attempted to extend endpoint detection with correlated telemetry from other sources, but the inconvenient truth is that endpoints lie.
Cisco XDR takes a different approach by starting with the network, making it the only XDR solution with NDR at its core.
As a network-led open XDR, it provides built-in network detection and response (NDR) capabilities, including native integrations with Meraki MX devices. Through this approach, the Security and Network Operations Center (SNOC) has emerged. This creates a bi-directional advantage for SecOps and NetOps, giving security analysts valuable threat detection, investigation, and response (TDIR) insights from the network, eliminating that blind spot, and allowing network administrators to proactively monitor emerging threats within their environment.
Join us for a two-hour workshop to understand the true value of a network-led approach to unify security and network operations. We will discuss how security and network teams struggling to fill the gap where security meets the network can benefit from Cisco XDR to attain a clear, complete view of their environments and work together to take swift, informed, and decisive actions to remediate threats.
| Event Date | 2025-11-05 |
| Event Location Timezone | America/Kentucky/Louisville |
| Event Start Time | 10:00 AM |
| Event End Time | 12:00 PM |
| Capacity | 40 |
| Registered | 9 |
| Available Place | 31 |
| Created By | Riley Mills |
| Workshop Length in Hours | 2 |
| Geolocation: | amer |
| Type of event: | partner |
| Webex URL | https://cisco.webex.com/cisco/j.php?MTID=mb24753072c54707ab86418ab2317cdcd |
| Location | Virtual |
RIR PVT Amsterdam
Rapid Incident Response Lab for Amsterdam PVT
| Event Date | 2025-11-24 |
| Event Location Timezone | Europe/Amsterdam |
| Event Start Time | 12:30 PM |
| Event End Time | 5:30 PM |
| Capacity | 20 |
| Registered | 0 |
| Available Place | 20 |
| Created By | Richard Laval |
| Geolocation: | emea |
| Type of event: | partner |
| Location | Cisco Amsterdam |