[](https://www.paloaltonetworks.com/?ts=markdown) * CN * [USA (ENGLISH)](https://www.paloaltonetworks.com/) * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au) * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br) * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca) * CHINA (简体中文) * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr) * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de) * [INDIA (ENGLISH)](https://www.paloaltonetworks.in) * [ITALY (ITALIANO)](https://www.paloaltonetworks.it) * [JAPAN (日本語)](https://www.paloaltonetworks.jp) * [KOREA (한국어)](https://www.paloaltonetworks.co.kr) * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat) * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx) * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg) * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es) * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw) * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk) * ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [联系我们](https://www.paloaltonetworks.cn/contact?ts=markdown) * [资源](https://www.paloaltonetworks.cn/resources?ts=markdown) * [获得支持](https://support.paloaltonetworks.com/support) * [遭遇攻击?](https://start.paloaltonetworks.com/contact-unit42.html) ![x close icon to close mobile navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-black.svg) [![Palo Alto Networks logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)](https://www.paloaltonetworks.com/?ts=markdown) ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [](https://www.paloaltonetworks.com/?ts=markdown) * 产品 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 产品 [人工智能驱动的网络安全平台](https://www.paloaltonetworks.cn/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.cn/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown) * [云交付的安全服务](https://www.paloaltonetworks.cn/network-security/security-subscriptions?ts=markdown) * [高级威胁预防](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.cn/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown) * [企业数据丢失防护](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-device-security?ts=markdown) * [医疗物联网安全](https://www.paloaltonetworks.cn/network-security/medical-iot-security?ts=markdown) * [工业 OT 安全](https://www.paloaltonetworks.cn/network-security/industrial-ot-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [新一代防火墙](https://www.paloaltonetworks.cn/network-security/next-generation-firewall?ts=markdown) * [硬件防火墙](https://www.paloaltonetworks.cn/network-security/hardware-firewall-innovations?ts=markdown) * [软件防火墙](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.cn/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.cn/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.cn/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.cn/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.cn/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.cn/sase?ts=markdown) * [应用加速](https://www.paloaltonetworks.cn/sase/app-acceleration?ts=markdown) * [自主数字体验管理](https://www.paloaltonetworks.cn/sase/adem?ts=markdown) * [企业 DLP](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.cn/sase/access?ts=markdown) * [Prisma 浏览器](https://www.paloaltonetworks.cn/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.cn/sase/sd-wan?ts=markdown) * [远程浏览器隔离](https://www.paloaltonetworks.cn/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) [基于 AI 的安全运营平台](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [应用安全](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) * [云运行时安全](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.cn/prisma/cloud?ts=markdown) * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [人工智能驱动的 SOC](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cortex Advanced Email Security](https://www.paloaltonetworks.cn/cortex/advanced-email-security?ts=markdown) * [Cortex Exposure Management](https://www.paloaltonetworks.cn/cortex/exposure-management?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown) * [托管 XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown) * 解决方案 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 解决方案 AI 安全 * [安全的人工智能生态系统](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown) * [安全使用 GenAI](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown) 网络安全 * [云网络安全](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown) * [数据中心安全](https://www.paloaltonetworks.cn/network-security/data-center?ts=markdown) * [DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown) * [入侵检测和防御](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown) * [IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-device-security?ts=markdown) * [5G 安全](https://www.paloaltonetworks.cn/network-security/5g-security?ts=markdown) * [确保所有应用、用户和位置的安全](https://www.paloaltonetworks.cn/sase/secure-users-data-apps-devices?ts=markdown) * [确保分支机构转型的安全](https://www.paloaltonetworks.cn/sase/secure-branch-transformation?ts=markdown) * [确保任何设备上的工作安全](https://www.paloaltonetworks.cn/sase/secure-work-on-any-device?ts=markdown) * [VPN 替代](https://www.paloaltonetworks.cn/sase/vpn-replacement-for-secure-remote-access?ts=markdown) * [Web 和网络钓鱼安全](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown) 云安全 * [应用安全态势管理 (ASPM)](https://www.paloaltonetworks.cn/cortex/cloud/application-security-posture-management?ts=markdown) * [软件供应链安全](https://www.paloaltonetworks.cn/cortex/cloud/software-supply-chain-security?ts=markdown) * [代码安全](https://www.paloaltonetworks.cn/cortex/cloud/code-security?ts=markdown) * [云安全态势管理 (CSPM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-security-posture-management?ts=markdown) * [云基础架构权限管理 (CIEM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown) * [数据安全态势管理 (DSPM)](https://www.paloaltonetworks.cn/cortex/cloud/data-security-posture-management?ts=markdown) * [AI 安全态势管理 (AI-SPM)](https://www.paloaltonetworks.cn/cortex/cloud/ai-security-posture-management?ts=markdown) * [云检测与响应 (CDR)](https://www.paloaltonetworks.cn/cortex/cloud-detection-and-response?ts=markdown) * [云工作负载保护 (CWP)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-workload-protection?ts=markdown) * [Web 应用及 API 安全 (WAAS)](https://www.paloaltonetworks.cn/cortex/cloud/web-app-api-security?ts=markdown) 安全运营 * [云检测和响应](https://www.paloaltonetworks.cn/cortex/cloud-detection-and-response?ts=markdown) * [网络安全自动化](https://www.paloaltonetworks.cn/cortex/network-security-automation?ts=markdown) * [事件案例管理](https://www.paloaltonetworks.cn/cortex/incident-case-management?ts=markdown) * [SOC 自动化](https://www.paloaltonetworks.cn/cortex/security-operations-automation?ts=markdown) * [威胁情报管理](https://www.paloaltonetworks.cn/cortex/threat-intel-management?ts=markdown) * [托管的检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [攻击面管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/attack-surface-management?ts=markdown) * [合规性管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/compliance-management?ts=markdown) * [互联网运营管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/internet-operations-management?ts=markdown) 端点安全 * [端点防护](https://www.paloaltonetworks.cn/cortex/endpoint-protection?ts=markdown) * [扩展的检测和响应](https://www.paloaltonetworks.cn/cortex/detection-and-response?ts=markdown) * [勒索软件防护](https://www.paloaltonetworks.cn/cortex/ransomware-protection?ts=markdown) * [数字取证](https://www.paloaltonetworks.cn/cortex/digital-forensics?ts=markdown) [行业](https://www.paloaltonetworks.cn/industry?ts=markdown) * [公共部门](https://www.paloaltonetworks.com/industry/public-sector) * [金融服务](https://www.paloaltonetworks.com/industry/financial-services) * [制造](https://www.paloaltonetworks.com/industry/manufacturing) * [医疗保健](https://www.paloaltonetworks.com/industry/healthcare) * [中小型企业解决方案](https://www.paloaltonetworks.com/industry/small-medium-business-portfolio) * 服务 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 服务 [威胁情报和事件响应服务](https://www.paloaltonetworks.cn/unit42?ts=markdown) * [评估](https://www.paloaltonetworks.cn/unit42/assess?ts=markdown) * [AI 安全评估](https://www.paloaltonetworks.cn/unit42/assess/ai-security-assessment?ts=markdown) * [攻击面评估](https://www.paloaltonetworks.cn/unit42/assess/attack-surface-assessment?ts=markdown) * [防泄露准备工作审核](https://www.paloaltonetworks.cn/unit42/assess/breach-readiness-review?ts=markdown) * [BEC 准备情况评估](https://www.paloaltonetworks.com/bec-readiness-assessment) * [云安全评估](https://www.paloaltonetworks.com/unit42/assess/cloud-security-assessment) * [入侵评估](https://www.paloaltonetworks.cn/unit42/assess/compromise-assessment?ts=markdown) * [网络风险评估](https://www.paloaltonetworks.cn/unit42/assess/cyber-risk-assessment?ts=markdown) * [并购网络尽职调查](https://www.paloaltonetworks.cn/unit42/assess/mergers-acquisitions-cyber-due-dilligence?ts=markdown) * [渗透测试](https://www.paloaltonetworks.cn/unit42/assess/penetration-testing?ts=markdown) * [紫队演习](https://www.paloaltonetworks.cn/unit42/assess/purple-teaming?ts=markdown) * [勒索软件就绪评估](https://www.paloaltonetworks.cn/unit42/assess/ransomware-readiness-assessment?ts=markdown) * [SOC 评估](https://www.paloaltonetworks.com/unit42/assess/soc-assessment) * [供应链风险评估](https://www.paloaltonetworks.cn/unit42/assess/supply-chain-risk-assessment?ts=markdown) * [桌面演习](https://www.paloaltonetworks.cn/unit42/assess/tabletop-exercise?ts=markdown) * [Unit 42 顾问人员](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown) * [响应](https://www.paloaltonetworks.cn/unit42/respond?ts=markdown) * [云事故响应](https://www.paloaltonetworks.cn/unit42/respond/cloud-incident-response?ts=markdown) * [数字取证](https://www.paloaltonetworks.cn/unit42/respond/digital-forensics?ts=markdown) * [事件响应](https://www.paloaltonetworks.cn/unit42/respond/incident-response?ts=markdown) * [托管检测与响应](https://www.paloaltonetworks.cn/unit42/respond/managed-detection-response?ts=markdown) * [托管威胁追踪](https://www.paloaltonetworks.cn/unit42/respond/managed-threat-hunting?ts=markdown) * [托管 XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown) * [Unit 42 顾问人员](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown) * [转型](https://www.paloaltonetworks.cn/unit42/transform?ts=markdown) * [事故响应计划制定与审核](https://www.paloaltonetworks.cn/unit42/transform/incident-response-plan-development-review?ts=markdown) * [安全计划设计](https://www.paloaltonetworks.cn/unit42/transform/security-program-design?ts=markdown) * [虚拟 CISO](https://www.paloaltonetworks.cn/unit42/transform/vciso?ts=markdown) * [零信任咨询](https://www.paloaltonetworks.com/unit42/transform/zero-trust-advisory) [全球客户服务](https://www.paloaltonetworks.cn/services?ts=markdown) * [教育与培训](https://www.paloaltonetworks.com/services/education) * [专业服务](https://www.paloaltonetworks.com/services/consulting) * [成功工具](https://www.paloaltonetworks.com/services/customer-success-tools) * [支持服务](https://www.paloaltonetworks.com/services/solution-assurance) * [客户成功](https://www.paloaltonetworks.com/services/customer-success) [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/logo-unit-42.svg) Unit 42 顾问人员 为满足企业的需求而定制,您可以选择将顾问人员工时数分配给我们的任意产品,包括主动网络风险管理服务。了解如何一键呼叫世界一流的 Unit 42 事故响应团队。 了解更多](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown) * 合作伙伴 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 合作伙伴 NextWave 合作伙伴 * [NextWave 合作伙伴社区](https://www.paloaltonetworks.com/partners) * [云服务提供商](https://www.paloaltonetworks.com/partners/nextwave-for-csp) * [全球系统集成商](https://www.paloaltonetworks.com/partners/nextwave-for-gsi) * [技术合作伙伴](https://www.paloaltonetworks.com/partners/technology-partners) * [服务提供商](https://www.paloaltonetworks.com/partners/service-providers) * [解决方案提供商](https://www.paloaltonetworks.com/partners/nextwave-solution-providers) * [托管安全服务提供商](https://www.paloaltonetworks.com/partners/managed-security-service-providers) 采取行动 * [门户网站登录](https://www.paloaltonetworks.com/partners/nextwave-partner-portal) * [管理的服务计划](https://www.paloaltonetworks.com/partners/managed-security-services-provider-program) * [成为合作伙伴](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=becomepartner) * [请求访问](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=requestaccess) * [查找合作伙伴](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerlocator) [CYBERFORCE CYBERFORCE 代表了因其安全专业知识而值得信赖的前 1% 的合作伙伴工程师。 了解更多](https://www.paloaltonetworks.com/cyberforce) * 公司 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 公司 Palo Alto Networks * [关于我们](https://www.paloaltonetworks.cn/about-us?ts=markdown) * [管理团队](https://www.paloaltonetworks.com/about-us/management) * [投资者关系](https://investors.paloaltonetworks.com/) * [地点](https://www.paloaltonetworks.com/about-us/locations) * [道德与合规性](https://www.paloaltonetworks.com/company/ethics-and-compliance) * [企业责任](https://www.paloaltonetworks.com/about-us/corporate-responsibility) * [军人和退伍军人](https://jobs.paloaltonetworks.com/military) [为什么选择 Palo Alto Networks?](https://www.paloaltonetworks.cn/why-paloaltonetworks?ts=markdown) * [Precision AI 安全](https://www.paloaltonetworks.cn/precision-ai-security?ts=markdown) * [我们的平台方法](https://www.paloaltonetworks.cn/why-paloaltonetworks/platformization?ts=markdown) * [加速网络安全转型](https://www.paloaltonetworks.com/why-paloaltonetworks/nam-cxo-portfolio) * [获得的奖项与表彰](https://www.paloaltonetworks.com/about-us/awards) * [客户案例](https://www.paloaltonetworks.cn/customers?ts=markdown) * [全球认证](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance) * [全方位信任计划](https://www.paloaltonetworks.com/resources/whitepapers/trust-360) 职业生涯 * [概述](https://jobs.paloaltonetworks.com/) * [文化与福利](https://jobs.paloaltonetworks.com/culture) [《新闻周刊》评选出的最受欢迎的工作场所 善待员工的企业 阅读更多](https://www.paloaltonetworks.com/company/press/2021/palo-alto-networks-secures-top-ranking-on-newsweek-s-most-loved-workplaces-list-for-2021) * 更多内容 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 更多内容 资源 * [博客](https://www.paloaltonetworks.com/blog/?lang=zh-hans) * [Unit 42 威胁研究博客](https://unit42.paloaltonetworks.com/) * [社区](https://www.paloaltonetworks.com/communities) * [内容库](https://www.paloaltonetworks.cn/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.cn/cyberpedia?ts=markdown) * [技术内幕](https://techinsider.paloaltonetworks.com/) * [知识库](https://knowledgebase.paloaltonetworks.com/) * [Palo Alto Networks 频道](https://tv.paloaltonetworks.com/) * [领导者的视角](https://www.paloaltonetworks.com/perspectives/) * [《网络视角》杂志](https://www.paloaltonetworks.com/cybersecurity-perspectives/cyber-perspectives-magazine) * [区域云位置](https://www.paloaltonetworks.cn/products/regional-cloud-locations?ts=markdown) * [技术文档](https://docs.paloaltonetworks.com/) * [安全态势评估](https://www.paloaltonetworks.cn/security-posture-assessment?ts=markdown) * [威胁载体播客](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/) 联系 * [在线社区](https://live.paloaltonetworks.com/) * [活动资讯](https://events.paloaltonetworks.com/) * [高管简报中心](https://www.paloaltonetworks.com/about-us/executive-briefing-program) * [演示](https://www.paloaltonetworks.cn/demos?ts=markdown) * [联系我们](https://www.paloaltonetworks.cn/company/contact-sales?ts=markdown) [博客 了解行业趋势和全球最大网络安全公司的最新创新 了解更多](https://www.paloaltonetworks.com/blog/?lang=zh-hans) * CN ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Language * [USA (ENGLISH)](https://www.paloaltonetworks.com/) * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au) * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br) * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca) * CHINA (简体中文) * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr) * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de) * [INDIA (ENGLISH)](https://www.paloaltonetworks.in) * [ITALY (ITALIANO)](https://www.paloaltonetworks.it) * [JAPAN (日本語)](https://www.paloaltonetworks.jp) * [KOREA (한국어)](https://www.paloaltonetworks.co.kr) * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat) * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx) * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg) * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es) * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw) * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk) * [联系我们](https://www.paloaltonetworks.cn/contact?ts=markdown) * [资源](https://www.paloaltonetworks.cn/resources?ts=markdown) * [获得支持](https://support.paloaltonetworks.com/support) * [遭遇攻击?](https://start.paloaltonetworks.com/contact-unit42.html) * [立即开始](https://www.paloaltonetworks.cn/get-started?ts=markdown) 搜索 Close search modal [](https://www.paloaltonetworks.com/?ts=markdown) 1. [Cyberpedia](https://www.paloaltonetworks.cn/cyberpedia?ts=markdown) 2. [Security Operations](https://www.paloaltonetworks.com/cyberpedia/security-operations?ts=markdown) 3. [什么是 Cortex XSIAM?](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam?ts=markdown) 目录 * [什么是安全自动化?](https://www.paloaltonetworks.com/cyberpedia/what-is-security-automation?ts=markdown) * [什么是安全自动化?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-automation#what?ts=markdown) * [自动化与网络安全有何关联?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-automation#how?ts=markdown) * [使用自动安全系统的优势](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-automation#advantages?ts=markdown) * [安全自动化工具示例](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-automation#automation?ts=markdown) * [网络安全合并对自动化有何影响?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-automation#impact?ts=markdown) * [合并网络安全常见问题中的自动化问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-automation#faq?ts=markdown) * 什么是 Cortex XSIAM? * [Cortex XSIAM:人工智能驱动的安全平台](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#future?ts=markdown) * [为什么需要 XSIAM 安全软件?](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#why?ts=markdown) * [XSIAM 如何工作?](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#how?ts=markdown) * [Cortex XSIAM 的主要集成功能](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#capabilities?ts=markdown) * [Cortex XSIAM | 现代 SOC 平台](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#modern-soc?ts=markdown) * [Cortex XSIAM 常见问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#faq?ts=markdown) # 什么是 Cortex XSIAM? 目录 * * [Cortex XSIAM:人工智能驱动的安全平台](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#future?ts=markdown) * [为什么需要 XSIAM 安全软件?](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#why?ts=markdown) * [XSIAM 如何工作?](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#how?ts=markdown) * [Cortex XSIAM 的主要集成功能](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#capabilities?ts=markdown) * [Cortex XSIAM | 现代 SOC 平台](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#modern-soc?ts=markdown) * [Cortex XSIAM 常见问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#faq?ts=markdown) 1. Cortex XSIAM:人工智能驱动的安全平台 * * [Cortex XSIAM:人工智能驱动的安全平台](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#future?ts=markdown) * [为什么需要 XSIAM 安全软件?](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#why?ts=markdown) * [XSIAM 如何工作?](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#how?ts=markdown) * [Cortex XSIAM 的主要集成功能](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#capabilities?ts=markdown) * [Cortex XSIAM | 现代 SOC 平台](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#modern-soc?ts=markdown) * [Cortex XSIAM 常见问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam#faq?ts=markdown) ![革新您的 SOC:网络安全案例研究 | Cortex XSIAM](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/revolutionize-your-soc-cs.png) *革新您的 SOC:网络安全案例研究 | Cortex XSIAM* close 扩展安全智能和自动化管理(XSIAM)是一种全新的安全运营方法,通过紧密集成和自动化现代安全运营中心(SOC)的功能和流程,显著提高安全成果。 ## Cortex XSIAM:人工智能驱动的安全平台 XSIAM 旨在成为 SOC 活动的中心,通过将广泛的功能统一到一个整体解决方案中,取代 SIEM 和专业产品。XSIAM 的功能包括数据集中、智能拼接、基于分析的检测、事件管理、威胁情报、自动化、攻击面管理等,所有这些功能都以任务为导向,提供直观的用户体验。 XSIAM 以 XDR 久经考验的威胁检测和响应能力为基础,维护您的安全态势。凭借集中的数据存储和统一的 SOC 功能,XSIAM 为传统的安全信息和事件管理 (SIEM) 解决方案提供了一条清晰的迁移路径。 *阅读我们的文章 "[什么是 SIEM](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem?ts=markdown)?",深入了解安全信息和事件管理。* XSIAM 是 Palo Alto Networks 于 2022 年首次推出的一个新类别,旨在提供未来的自主安全平台。 ## 为什么需要 XSIAM 安全软件? 目前,安全运营中心(SOC)的需求已经发生了转变,然而安全信息与事件管理(SIEM)和 SOC 的结构却一直停滞不前。 虽然安全系统的其他重要组成部分也经历了现代化,如端点从防病毒过渡到端点检测和响应(EDR)以及扩展检测和响应(XDR);网络从传统的 "硬壳 "边界过渡到零信任和安全访问服务边缘(SASE);运行时从数据中心迁移到云,但 SOC 仍持续采用二十年前构想的 SIEM 模式。 ![XSIAM-安全](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/XSIAM-Security.png "XSIAM-安全") 由于对手自动攻击由集成度不高的安全产品防御的基础设施,因此要求 [安全运营](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-operations?ts=markdown) 小组比以往任何时候都更快地做出反应。与此同时,容器工作负载和持续集成/持续部署(CI/CD)环境的短暂性也给安全小组带来了挑战,他们必须时刻保持安全态势。 由此产生的一个副产品就是管理服务产品的增长,以可扩展的方式提供更多的资源来保卫组织,但即使增加了这笔费用,许多组织还是感到力不从心。 在过去十年中,防御者在应对这些挑战方面的一个重要转变是 [端点检测和响应(EDR)](https://www.paloaltonetworks.cn/cyberpedia/what-is-endpoint-detection-and-response-edr?ts=markdown) 以及扩展检测和响应(XDR)解决方案的发展,通过改进安全分析和环境可见性来提供更好的威胁检测和响应能力。 如今,虽然许多组织正从这些功能中受益,但还有许多组织仍在使用 SIEM 来集中日志数据,并汇总经常用于安全和合规性用例的其他日志。遗憾的是,SIEM 通常依赖于手动配置日志摄取和检测规则,以及警报的分流和修复。 XSIAM 试图通过将这些流程产品化和集成化来提供近乎实时的安全运营成果,从而减轻对人工流程的依赖。 ## XSIAM 如何工作? XSIAM 的运行方式独一无二,它利用智能自动化打破了当今安全产品以分析师为主导的模式。该系统持续收集来自任何来源的深度遥测、警报和事件。然后,它自动准备和丰富数据,将其独特地缝合到安全情报中,并立即应用机器学习检测分析。 警报按事件分组,并充分充实相关背景信息。例行事件得到确认、处理和结案。仪表板汇集了受影响用户、资产和基础设施的所有相关方面。嵌入式自动化和内联播放列表可加快行动速度,并随着时间的推移进行自我学习。在各个方面,XSIAM 都有助于最大限度地减少分析师的任务,这样他们就可以只关注系统本身无法完成的活动。 ## Cortex XSIAM 的主要集成功能 Cortex XSIAM 将这些关键的 SOC 产品功能整合到一个统一的平台中: * **安全信息和事件管理 (SIEM)** 提供所有常见的 SIEM 功能,包括日志管理、关联和警报、报告和长期数据保留。 * **威胁情报平台 (TIP)** 聚合、评分并向第三方工具分发威胁情报数据,包括业界领先的 Unit 42® 威胁源,并丰富警报的背景和属性。 * **扩展检测和响应 (XDR)** 从任何来源收集遥测数据,具有无与伦比的检测覆盖面和准确性,在 2022 年 MITRE ATT\&CK 评估中技术级检测数量最多。 * **端点保护平台(EPP)** 通过久经考验的端点代理防止端点攻击,该代理可阻止漏洞利用、恶意软件和无文件攻击,并收集全面的遥测数据以进行检测和响应。 * **攻击面管理 (ASM)** 提供嵌入式攻击面管理 (ASM) 功能,以攻击者的视角审视组织,包括资产发现、漏洞评估和风险管理。 * **身份威胁检测和响应 (ITDR)** 利用机器学习和行为分析对用户和实体进行剖析,并对可能表明账户或恶意入侵指标的行为发出警报。 * **安全协调、自动化和响应 (SOAR)** 利用数百个内置播放程序自动处理几乎所有用例,并通过可视化拖放播放程序编辑器提供自定义功能。 * **云检测和响应 (CDR)** 分析云审计、流量和容器主机日志以及其他来源的数据,以便在混合企业中进行整体检测和响应。 * 管理、报告和合规性 简化操作,集中所有配置、监控和报告功能,包括端点策略管理、协调和响应。 ## Cortex XSIAM | 现代 SOC 平台 [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) 可帮助现代 SOC 从反应式和以人为本的方法(这种方法无法大规模扩展以应对不断增加的威胁)向人工智能驱动的自主 SOC 的愿景发展。XSIAM 尽可能采用自动化和分析技术,以降低 SecOps 成本,使 SecOps 流程能够自我维持。 Cortex^®^ XSIAM^™^ 将通过以下方式使组织受益,从而改变 SecOps: * 利用融合平台简化安全操作 - 将所有数据和 SOC 功能整合到一个平台中。将 XDR、SOAR、ASM 和 SIEM 等 SOC 功能融合到单一平台中,可消除控制台切换,简化安全操作。 * 利用人工智能驱动的结果大规模阻止威胁 - 开箱即用的人工智能模型超越了传统的检测方法,可连接各种数据源的事件,从而大规模准确检测和阻止威胁。 * 以自动化为先的方法加快事件修复 - 在分析师查看事件之前自动采取行动。自动执行安全任务,减少人工操作,加快事件响应和修复。 当我们说人工智能驱动时,我们的意思是它只需工作,而且是实时工作。 ## Cortex XSIAM 常见问题 ### 利用 Cortex XSIAM 进行威胁情报管理有哪三个好处? 大幅提高安全性,杜绝漏洞: * **建立智能数据基础**。Cortex XSIAM 可让您将广泛的遥测数据转化为智能数据基础,为高级分析提供动力,同时让您以传统解决方案一半的成本利用数据。 * **加快响应速度**。Cortex XSIAM 利用数据基础,通过自我学习的云原生人工智能来侦测对手的新战术,并自动执行事件调查的关键步骤。 * **超越威胁**。Cortex XSIAM 通过本机攻击面管理和集成威胁情报持续发现漏洞。 ### XDR 和 SIEM 有什么区别? Palo Alto Networks SIEM 侧重于基于日志的关联和基于规则的检测,而 XDR 则利用高级分析、机器学习和行为分析,进行更主动和自适应的威胁检测。如果您需要高级威胁检测功能和自动响应行动,XDR 可能更适合您。 ### Cortex Xsiam 中的代理虚拟机有何作用? 通过设置代理,您可以建立一个安全连接,在此连接中您可以路由端点,并收集和转发日志和文件以供分析。Broker 可用于在虚拟机上使用相同的 Palo Alto Networks 身份验证分别运行不同的服务。 相关内容 [Cortex 副驾驶员 了解 Cortex Copilot,您的高级安全操作助手,更快地解决突发事件,领先应对新出现的威胁。](https://www.paloaltonetworks.cn/cortex/cortex-xsiam#results?ts=markdown) [Cortex XSIAM 产品信息 缩短解决问题的中位时间,提高 SOC 效率,提高事件结案率。](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) \[Cortex 重新构想 SecOps 通过成熟的端点安全、检测、响应、自动化和攻击面管理为您的组织提供保障。\](https://www.paloaltonetworks.cn/cortex/whycortex ?ts=markdown) [XSIAM 新闻稿 新的人工智能驱动平台将威胁响应时间从数天缩短到数分钟,为 SIEM 提供了现代化的替代方案。](https://www.paloaltonetworks.com/company/press/2022/palo-alto-networks-introduces-the-autonomous-security-platform--cortex-xsiam--to-reimagine-siem-and-soc-analytics) ![Share page on facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/facebook-circular-icon.svg) ![Share page on linkedin](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/linkedin-circular-icon.svg) [![Share page by an email](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/email-circular-icon.svg)](mailto:?subject=%E4%BB%80%E4%B9%88%E6%98%AF%20Cortex%20XSIAM%EF%BC%9F&body=Palo%20Alto%20Networks%20%E7%9A%84%20Cortex%20XSIAM%EF%BC%88%E6%89%A9%E5%B1%95%E5%AE%89%E5%85%A8%E6%99%BA%E8%83%BD%E5%92%8C%E8%87%AA%E5%8A%A8%E5%8C%96%E7%AE%A1%E7%90%86%EF%BC%89%EF%BC%88XSIAM%EF%BC%89%E6%98%AF%E4%B8%80%E7%A7%8D%E5%85%A8%E6%96%B0%E7%9A%84%E5%AE%89%E5%85%A8%E6%93%8D%E4%BD%9C%E6%96%B9%E6%B3%95%EF%BC%8C%E6%97%A8%E5%9C%A8%E6%8F%90%E4%BE%9B%E4%B8%80%E4%B8%AA%E4%BA%BA%E5%B7%A5%E6%99%BA%E8%83%BD%E9%A9%B1%E5%8A%A8%E7%9A%84%E5%AE%89%E5%85%A8%E5%B9%B3%E5%8F%B0%E3%80%82%20at%20https%3A//www.paloaltonetworks.com/cyberpedia/what-is-extended-security-intelligence-and-automation-management-xsiam) 返回页首 [上一页](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-automation?ts=markdown) 什么是安全自动化? {#footer} ## 产品和服务 * [实时人工智能驱动的网络安全](https://www.paloaltonetworks.cn/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.cn/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown) * [云交付的安全服务](https://www.paloaltonetworks.cn/network-security/security-subscriptions?ts=markdown) * [高级威胁预防](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.cn/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown) * [企业数据丢失防护](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-iot-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.cn/network-security/medical-iot-security?ts=markdown) * [工业 OT 安全](https://www.paloaltonetworks.cn/network-security/industrial-ot-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [新一代防火墙](https://www.paloaltonetworks.cn/network-security/next-generation-firewall?ts=markdown) * [硬件防火墙](https://www.paloaltonetworks.cn/network-security/hardware-firewall-innovations?ts=markdown) * [软件防火墙](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.cn/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.cn/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.cn/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.cn/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.cn/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.cn/sase?ts=markdown) * [应用加速](https://www.paloaltonetworks.cn/sase/app-acceleration?ts=markdown) * [自主数字体验管理](https://www.paloaltonetworks.cn/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.cn/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.cn/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.cn/sase/sd-wan?ts=markdown) * [远程浏览器隔离](https://www.paloaltonetworks.cn/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [基于 AI 的安全运营平台](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.cn/prisma/cloud?ts=markdown) * [人工智能驱动的 SOC](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown) * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown) * [威胁情报和事件响应服务](https://www.paloaltonetworks.cn/unit42?ts=markdown) * [主动评估](https://www.paloaltonetworks.cn/unit42/assess?ts=markdown) * [事故响应](https://www.paloaltonetworks.cn/unit42/respond?ts=markdown) * [安全策略转型](https://www.paloaltonetworks.cn/unit42/transform?ts=markdown) * [发现威胁情报](https://www.paloaltonetworks.cn/unit42/threat-intelligence-partners?ts=markdown) ## 公司 * [关于我们](https://www.paloaltonetworks.cn/about-us?ts=markdown) * [人才招聘](https://jobs.paloaltonetworks.com/en/) * [联系我们](https://www.paloaltonetworks.cn/company/contact-sales?ts=markdown) * [企业责任](https://www.paloaltonetworks.com/about-us/corporate-responsibility) * [客户](https://www.paloaltonetworks.cn/customers?ts=markdown) * [投资者关系](https://investors.paloaltonetworks.com/) * [位置](https://www.paloaltonetworks.com/about-us/locations) * [新闻资讯](https://www.paloaltonetworks.cn/company/newsroom?ts=markdown) ## 热门链接 * [博客](https://www.paloaltonetworks.com/blog/?lang=zh-hans) * [社区](https://www.paloaltonetworks.com/communities) * [内容库](https://www.paloaltonetworks.cn/resources?ts=markdown) * [网络百科](https://www.paloaltonetworks.com/cyberpedia) * [事件中心](https://events.paloaltonetworks.com/) * [管理电子邮件首选项](https://start.paloaltonetworks.com/preference-center) * [产品清单](https://www.paloaltonetworks.cn/products/products-a-z?ts=markdown) * [产品认证](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance) * [报告漏洞](https://www.paloaltonetworks.com/security-disclosure) * [网站地图](https://www.paloaltonetworks.cn/sitemap?ts=markdown) * [技术文档](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [请勿出售或分享我的个人信息](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [隐私](https://www.paloaltonetworks.com/legal-notices/privacy) * [信任中心](https://www.paloaltonetworks.com/legal-notices/trust-center) * [使用条款](https://www.paloaltonetworks.com/legal-notices/terms-of-use) * [文档](https://www.paloaltonetworks.com/legal) 版权所有 © 2025 Palo Alto Networks。保留所有权利 * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/) * CN Select your language