[](https://www.paloaltonetworks.com/?ts=markdown) * CN * [USA (ENGLISH)](https://www.paloaltonetworks.com/) * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au) * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br) * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca) * CHINA (简体中文) * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr) * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de) * [INDIA (ENGLISH)](https://www.paloaltonetworks.in) * [ITALY (ITALIANO)](https://www.paloaltonetworks.it) * [JAPAN (日本語)](https://www.paloaltonetworks.jp) * [KOREA (한국어)](https://www.paloaltonetworks.co.kr) * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat) * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx) * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg) * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es) * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw) * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk) * ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [联系我们](https://www.paloaltonetworks.cn/contact?ts=markdown) * [资源](https://www.paloaltonetworks.cn/resources?ts=markdown) * [获得支持](https://support.paloaltonetworks.com/support) * [遭遇攻击?](https://start.paloaltonetworks.com/contact-unit42.html) ![x close icon to close mobile navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-black.svg) [![Palo Alto Networks logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)](https://www.paloaltonetworks.com/?ts=markdown) ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [](https://www.paloaltonetworks.com/?ts=markdown) * 产品 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 产品 [人工智能驱动的网络安全平台](https://www.paloaltonetworks.cn/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.cn/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown) * [云交付的安全服务](https://www.paloaltonetworks.cn/network-security/security-subscriptions?ts=markdown) * [高级威胁预防](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.cn/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown) * [企业数据丢失防护](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-device-security?ts=markdown) * [医疗物联网安全](https://www.paloaltonetworks.cn/network-security/medical-iot-security?ts=markdown) * [工业 OT 安全](https://www.paloaltonetworks.cn/network-security/industrial-ot-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [新一代防火墙](https://www.paloaltonetworks.cn/network-security/next-generation-firewall?ts=markdown) * [硬件防火墙](https://www.paloaltonetworks.cn/network-security/hardware-firewall-innovations?ts=markdown) * [软件防火墙](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.cn/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.cn/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.cn/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.cn/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.cn/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.cn/sase?ts=markdown) * [应用加速](https://www.paloaltonetworks.cn/sase/app-acceleration?ts=markdown) * [自主数字体验管理](https://www.paloaltonetworks.cn/sase/adem?ts=markdown) * [企业 DLP](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.cn/sase/access?ts=markdown) * [Prisma 浏览器](https://www.paloaltonetworks.cn/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.cn/sase/sd-wan?ts=markdown) * [远程浏览器隔离](https://www.paloaltonetworks.cn/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) [基于 AI 的安全运营平台](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [应用安全](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) * [云运行时安全](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.cn/prisma/cloud?ts=markdown) * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [人工智能驱动的 SOC](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cortex Advanced Email Security](https://www.paloaltonetworks.cn/cortex/advanced-email-security?ts=markdown) * [Cortex Exposure Management](https://www.paloaltonetworks.cn/cortex/exposure-management?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown) * [托管 XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown) * 解决方案 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 解决方案 AI 安全 * [安全的人工智能生态系统](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown) * [安全使用 GenAI](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown) 网络安全 * [云网络安全](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown) * [数据中心安全](https://www.paloaltonetworks.cn/network-security/data-center?ts=markdown) * [DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown) * [入侵检测和防御](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown) * [IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-device-security?ts=markdown) * [5G 安全](https://www.paloaltonetworks.cn/network-security/5g-security?ts=markdown) * [确保所有应用、用户和位置的安全](https://www.paloaltonetworks.cn/sase/secure-users-data-apps-devices?ts=markdown) * [确保分支机构转型的安全](https://www.paloaltonetworks.cn/sase/secure-branch-transformation?ts=markdown) * [确保任何设备上的工作安全](https://www.paloaltonetworks.cn/sase/secure-work-on-any-device?ts=markdown) * [VPN 替代](https://www.paloaltonetworks.cn/sase/vpn-replacement-for-secure-remote-access?ts=markdown) * [Web 和网络钓鱼安全](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown) 云安全 * [应用安全态势管理 (ASPM)](https://www.paloaltonetworks.cn/cortex/cloud/application-security-posture-management?ts=markdown) * [软件供应链安全](https://www.paloaltonetworks.cn/cortex/cloud/software-supply-chain-security?ts=markdown) * [代码安全](https://www.paloaltonetworks.cn/cortex/cloud/code-security?ts=markdown) * [云安全态势管理 (CSPM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-security-posture-management?ts=markdown) * [云基础架构权限管理 (CIEM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown) * [数据安全态势管理 (DSPM)](https://www.paloaltonetworks.cn/cortex/cloud/data-security-posture-management?ts=markdown) * [AI 安全态势管理 (AI-SPM)](https://www.paloaltonetworks.cn/cortex/cloud/ai-security-posture-management?ts=markdown) * [云检测与响应 (CDR)](https://www.paloaltonetworks.cn/cortex/cloud-detection-and-response?ts=markdown) * [云工作负载保护 (CWP)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-workload-protection?ts=markdown) * [Web 应用及 API 安全 (WAAS)](https://www.paloaltonetworks.cn/cortex/cloud/web-app-api-security?ts=markdown) 安全运营 * [云检测和响应](https://www.paloaltonetworks.cn/cortex/cloud-detection-and-response?ts=markdown) * [网络安全自动化](https://www.paloaltonetworks.cn/cortex/network-security-automation?ts=markdown) * [事件案例管理](https://www.paloaltonetworks.cn/cortex/incident-case-management?ts=markdown) * [SOC 自动化](https://www.paloaltonetworks.cn/cortex/security-operations-automation?ts=markdown) * [威胁情报管理](https://www.paloaltonetworks.cn/cortex/threat-intel-management?ts=markdown) * [托管的检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [攻击面管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/attack-surface-management?ts=markdown) * [合规性管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/compliance-management?ts=markdown) * [互联网运营管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/internet-operations-management?ts=markdown) 端点安全 * [端点防护](https://www.paloaltonetworks.cn/cortex/endpoint-protection?ts=markdown) * [扩展的检测和响应](https://www.paloaltonetworks.cn/cortex/detection-and-response?ts=markdown) * [勒索软件防护](https://www.paloaltonetworks.cn/cortex/ransomware-protection?ts=markdown) * [数字取证](https://www.paloaltonetworks.cn/cortex/digital-forensics?ts=markdown) [行业](https://www.paloaltonetworks.cn/industry?ts=markdown) * [公共部门](https://www.paloaltonetworks.com/industry/public-sector) * [金融服务](https://www.paloaltonetworks.com/industry/financial-services) * [制造](https://www.paloaltonetworks.com/industry/manufacturing) * [医疗保健](https://www.paloaltonetworks.com/industry/healthcare) * [中小型企业解决方案](https://www.paloaltonetworks.com/industry/small-medium-business-portfolio) * 服务 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 服务 [威胁情报和事件响应服务](https://www.paloaltonetworks.cn/unit42?ts=markdown) * [评估](https://www.paloaltonetworks.cn/unit42/assess?ts=markdown) * [AI 安全评估](https://www.paloaltonetworks.cn/unit42/assess/ai-security-assessment?ts=markdown) * [攻击面评估](https://www.paloaltonetworks.cn/unit42/assess/attack-surface-assessment?ts=markdown) * [防泄露准备工作审核](https://www.paloaltonetworks.cn/unit42/assess/breach-readiness-review?ts=markdown) * [BEC 准备情况评估](https://www.paloaltonetworks.com/bec-readiness-assessment) * [云安全评估](https://www.paloaltonetworks.com/unit42/assess/cloud-security-assessment) * [入侵评估](https://www.paloaltonetworks.cn/unit42/assess/compromise-assessment?ts=markdown) * [网络风险评估](https://www.paloaltonetworks.cn/unit42/assess/cyber-risk-assessment?ts=markdown) * [并购网络尽职调查](https://www.paloaltonetworks.cn/unit42/assess/mergers-acquisitions-cyber-due-dilligence?ts=markdown) * [渗透测试](https://www.paloaltonetworks.cn/unit42/assess/penetration-testing?ts=markdown) * [紫队演习](https://www.paloaltonetworks.cn/unit42/assess/purple-teaming?ts=markdown) * [勒索软件就绪评估](https://www.paloaltonetworks.cn/unit42/assess/ransomware-readiness-assessment?ts=markdown) * [SOC 评估](https://www.paloaltonetworks.com/unit42/assess/soc-assessment) * [供应链风险评估](https://www.paloaltonetworks.cn/unit42/assess/supply-chain-risk-assessment?ts=markdown) * [桌面演习](https://www.paloaltonetworks.cn/unit42/assess/tabletop-exercise?ts=markdown) * [Unit 42 顾问人员](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown) * [响应](https://www.paloaltonetworks.cn/unit42/respond?ts=markdown) * [云事故响应](https://www.paloaltonetworks.cn/unit42/respond/cloud-incident-response?ts=markdown) * [数字取证](https://www.paloaltonetworks.cn/unit42/respond/digital-forensics?ts=markdown) * [事件响应](https://www.paloaltonetworks.cn/unit42/respond/incident-response?ts=markdown) * [托管检测与响应](https://www.paloaltonetworks.cn/unit42/respond/managed-detection-response?ts=markdown) * [托管威胁追踪](https://www.paloaltonetworks.cn/unit42/respond/managed-threat-hunting?ts=markdown) * [托管 XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown) * [Unit 42 顾问人员](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown) * [转型](https://www.paloaltonetworks.cn/unit42/transform?ts=markdown) * [事故响应计划制定与审核](https://www.paloaltonetworks.cn/unit42/transform/incident-response-plan-development-review?ts=markdown) * [安全计划设计](https://www.paloaltonetworks.cn/unit42/transform/security-program-design?ts=markdown) * [虚拟 CISO](https://www.paloaltonetworks.cn/unit42/transform/vciso?ts=markdown) * [零信任咨询](https://www.paloaltonetworks.com/unit42/transform/zero-trust-advisory) [全球客户服务](https://www.paloaltonetworks.cn/services?ts=markdown) * [教育与培训](https://www.paloaltonetworks.com/services/education) * [专业服务](https://www.paloaltonetworks.com/services/consulting) * [成功工具](https://www.paloaltonetworks.com/services/customer-success-tools) * [支持服务](https://www.paloaltonetworks.com/services/solution-assurance) * [客户成功](https://www.paloaltonetworks.com/services/customer-success) [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/logo-unit-42.svg) Unit 42 顾问人员 为满足企业的需求而定制,您可以选择将顾问人员工时数分配给我们的任意产品,包括主动网络风险管理服务。了解如何一键呼叫世界一流的 Unit 42 事故响应团队。 了解更多](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown) * 合作伙伴 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 合作伙伴 NextWave 合作伙伴 * [NextWave 合作伙伴社区](https://www.paloaltonetworks.com/partners) * [云服务提供商](https://www.paloaltonetworks.com/partners/nextwave-for-csp) * [全球系统集成商](https://www.paloaltonetworks.com/partners/nextwave-for-gsi) * [技术合作伙伴](https://www.paloaltonetworks.com/partners/technology-partners) * [服务提供商](https://www.paloaltonetworks.com/partners/service-providers) * [解决方案提供商](https://www.paloaltonetworks.com/partners/nextwave-solution-providers) * [托管安全服务提供商](https://www.paloaltonetworks.com/partners/managed-security-service-providers) 采取行动 * [门户网站登录](https://www.paloaltonetworks.com/partners/nextwave-partner-portal) * [管理的服务计划](https://www.paloaltonetworks.com/partners/managed-security-services-provider-program) * [成为合作伙伴](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=becomepartner) * [请求访问](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=requestaccess) * [查找合作伙伴](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerlocator) [CYBERFORCE CYBERFORCE 代表了因其安全专业知识而值得信赖的前 1% 的合作伙伴工程师。 了解更多](https://www.paloaltonetworks.com/cyberforce) * 公司 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 公司 Palo Alto Networks * [关于我们](https://www.paloaltonetworks.cn/about-us?ts=markdown) * [管理团队](https://www.paloaltonetworks.com/about-us/management) * [投资者关系](https://investors.paloaltonetworks.com/) * [地点](https://www.paloaltonetworks.com/about-us/locations) * [道德与合规性](https://www.paloaltonetworks.com/company/ethics-and-compliance) * [企业责任](https://www.paloaltonetworks.com/about-us/corporate-responsibility) * [军人和退伍军人](https://jobs.paloaltonetworks.com/military) [为什么选择 Palo Alto Networks?](https://www.paloaltonetworks.cn/why-paloaltonetworks?ts=markdown) * [Precision AI 安全](https://www.paloaltonetworks.cn/precision-ai-security?ts=markdown) * [我们的平台方法](https://www.paloaltonetworks.cn/why-paloaltonetworks/platformization?ts=markdown) * [加速网络安全转型](https://www.paloaltonetworks.com/why-paloaltonetworks/nam-cxo-portfolio) * [获得的奖项与表彰](https://www.paloaltonetworks.com/about-us/awards) * [客户案例](https://www.paloaltonetworks.cn/customers?ts=markdown) * [全球认证](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance) * [全方位信任计划](https://www.paloaltonetworks.com/resources/whitepapers/trust-360) 职业生涯 * [概述](https://jobs.paloaltonetworks.com/) * [文化与福利](https://jobs.paloaltonetworks.com/culture) [《新闻周刊》评选出的最受欢迎的工作场所 善待员工的企业 阅读更多](https://www.paloaltonetworks.com/company/press/2021/palo-alto-networks-secures-top-ranking-on-newsweek-s-most-loved-workplaces-list-for-2021) * 更多内容 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 更多内容 资源 * [博客](https://www.paloaltonetworks.com/blog/?lang=zh-hans) * [Unit 42 威胁研究博客](https://unit42.paloaltonetworks.com/) * [社区](https://www.paloaltonetworks.com/communities) * [内容库](https://www.paloaltonetworks.cn/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.cn/cyberpedia?ts=markdown) * [技术内幕](https://techinsider.paloaltonetworks.com/) * [知识库](https://knowledgebase.paloaltonetworks.com/) * [Palo Alto Networks 频道](https://tv.paloaltonetworks.com/) * [领导者的视角](https://www.paloaltonetworks.com/perspectives/) * [《网络视角》杂志](https://www.paloaltonetworks.com/cybersecurity-perspectives/cyber-perspectives-magazine) * [区域云位置](https://www.paloaltonetworks.cn/products/regional-cloud-locations?ts=markdown) * [技术文档](https://docs.paloaltonetworks.com/) * [安全态势评估](https://www.paloaltonetworks.cn/security-posture-assessment?ts=markdown) * [威胁载体播客](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/) 联系 * [在线社区](https://live.paloaltonetworks.com/) * [活动资讯](https://events.paloaltonetworks.com/) * [高管简报中心](https://www.paloaltonetworks.com/about-us/executive-briefing-program) * [演示](https://www.paloaltonetworks.cn/demos?ts=markdown) * [联系我们](https://www.paloaltonetworks.cn/company/contact-sales?ts=markdown) [博客 了解行业趋势和全球最大网络安全公司的最新创新 了解更多](https://www.paloaltonetworks.com/blog/?lang=zh-hans) * CN ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Language * [USA (ENGLISH)](https://www.paloaltonetworks.com/) * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au) * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br) * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca) * CHINA (简体中文) * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr) * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de) * [INDIA (ENGLISH)](https://www.paloaltonetworks.in) * [ITALY (ITALIANO)](https://www.paloaltonetworks.it) * [JAPAN (日本語)](https://www.paloaltonetworks.jp) * [KOREA (한국어)](https://www.paloaltonetworks.co.kr) * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat) * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx) * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg) * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es) * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw) * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk) * [联系我们](https://www.paloaltonetworks.cn/contact?ts=markdown) * [资源](https://www.paloaltonetworks.cn/resources?ts=markdown) * [获得支持](https://support.paloaltonetworks.com/support) * [遭遇攻击?](https://start.paloaltonetworks.com/contact-unit42.html) * [立即开始](https://www.paloaltonetworks.cn/get-started?ts=markdown) 搜索 Close search modal [](https://www.paloaltonetworks.com/?ts=markdown) 1. [Cyberpedia](https://www.paloaltonetworks.cn/cyberpedia?ts=markdown) 2. [Security Operations](https://www.paloaltonetworks.com/cyberpedia/security-operations?ts=markdown) 3. [SIEM](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem?ts=markdown) 4. [什么是安全事件管理(SEM)?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem?ts=markdown) 目录 * [什么是 SIEM?](https://www.paloaltonetworks.com/cyberpedia/what-is-siem?ts=markdown) * [SIEM 如何工作](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#how?ts=markdown) * [SIEM 的主要功能和优势](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#key?ts=markdown) * [人工智能和 ML 在 SIEM 中的作用](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#role?ts=markdown) * [SIEM 集成](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#siem?ts=markdown) * [SIEM 使用案例](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#usecases?ts=markdown) * [如何选择 SIEM 解决方案](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#solution?ts=markdown) * [实施 SIEM 的最佳实践](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#best?ts=markdown) * [SIEM 与其他安全解决方案的比较](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#vs?ts=markdown) * [什么是云 SIEM?](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#cloud?ts=markdown) * [SIEM 的演变](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#evolution?ts=markdown) * [SIEM 的未来](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#future?ts=markdown) * [SIEM 常见问题解答](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem#faqs?ts=markdown) * [什么是 UEBA(用户和实体行为分析)?](https://www.paloaltonetworks.com/cyberpedia/what-is-user-entity-behavior-analytics-ueba?ts=markdown) * [UEBA 如何运作](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#how?ts=markdown) * [实践 UEBA 的好处](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#benefits?ts=markdown) * [UEBA 实践范例](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#examples?ts=markdown) * [UEBA 常见范例](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#common?ts=markdown) * [UEBA 部署中的挑战和考虑因素](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#challenges?ts=markdown) * [UEBA 应对的各种威胁](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#diverse?ts=markdown) * [整合 UEBA 和 XDR](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#integrate?ts=markdown) * [UEBA 与 NTA](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#nta?ts=markdown) * [UEBA 与 SIEM](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#siem?ts=markdown) * [UEBA 与 IAM](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#iam?ts=markdown) * [UEBA 的未来趋势和发展](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#future?ts=markdown) * [选择正确的 UEBA 解决方案](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#choose?ts=markdown) * [UEBA 常见问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-user-entity-behavior-analytics-ueba#faqs?ts=markdown) * [什么是 SIEM 日志?](https://www.paloaltonetworks.com/cyberpedia/what-is-siem-logging?ts=markdown) * [SIEM 日志记录为何对 IT 安全至关重要?](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem-logging#why?ts=markdown) * [SIEM 与日志管理:了解差异](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem-logging#vs?ts=markdown) * [SIEM 日志的关键组成部分](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem-logging#key?ts=markdown) * [SIEM 日志记录机制](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem-logging#mechanics?ts=markdown) * [SIEM 日志记录最佳实践](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem-logging#best-practices?ts=markdown) * [SIEM 日志挑战与解决方案](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem-logging#challenges?ts=markdown) * [SIEM 日志常见问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem-logging#faqs?ts=markdown) * 什么是安全事件管理(SEM)? * [为什么 SEM 对 IT 安全很重要?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#why?ts=markdown) * [SEM 是如何运作的?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#how?ts=markdown) * [场景检测和缓解内部威胁](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#scenario?ts=markdown) * [SIM vs. SEM vs. SIEM](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#sim?ts=markdown) * [安全事件管理 (SEM) 常见问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#faqs?ts=markdown) * [How Do SIEM Tools Benefit SOC Teams?](https://www.paloaltonetworks.com/cyberpedia/how-do-siem-tools-benefit-soc-teams?ts=markdown) * [What is a SOC (Security Operations Center)?](https://www.paloaltonetworks.cn/cyberpedia/how-do-siem-tools-benefit-soc-teams#what?ts=markdown) * [What is Security Information and Event Management (SIEM)?](https://www.paloaltonetworks.cn/cyberpedia/how-do-siem-tools-benefit-soc-teams#siem?ts=markdown) * [The Benefits of SIEM Tools for SOC Teams](https://www.paloaltonetworks.cn/cyberpedia/how-do-siem-tools-benefit-soc-teams#benefits?ts=markdown) * [Implementing SIEM in SOCs](https://www.paloaltonetworks.cn/cyberpedia/how-do-siem-tools-benefit-soc-teams#implementing?ts=markdown) * [Challenges and Considerations](https://www.paloaltonetworks.cn/cyberpedia/how-do-siem-tools-benefit-soc-teams#challenges?ts=markdown) * [How SIEM Tools Benefit SOC Teams FAQs](https://www.paloaltonetworks.cn/cyberpedia/how-do-siem-tools-benefit-soc-teams#faqs?ts=markdown) # 什么是安全事件管理(SEM)? 目录 * * [为什么 SEM 对 IT 安全很重要?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#why?ts=markdown) * [SEM 是如何运作的?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#how?ts=markdown) * [场景检测和缓解内部威胁](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#scenario?ts=markdown) * [SIM vs. SEM vs. SIEM](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#sim?ts=markdown) * [安全事件管理 (SEM) 常见问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#faqs?ts=markdown) 1. 为什么 SEM 对 IT 安全很重要? * * [为什么 SEM 对 IT 安全很重要?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#why?ts=markdown) * [SEM 是如何运作的?](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#how?ts=markdown) * [场景检测和缓解内部威胁](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#scenario?ts=markdown) * [SIM vs. SEM vs. SIEM](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#sim?ts=markdown) * [安全事件管理 (SEM) 常见问题](https://www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem#faqs?ts=markdown) 安全事件管理(SEM)是对组织 IT 基础设施内的安全事件进行监控、关联和管理,以检测和应对潜在安全威胁或事件的过程。 SEM 主要侧重于安全事件的管理和分析。它通常涉及通过日志和活动进行事件监控、关联和分析、警报和通知、事件响应以及报告和合规性。 [全面了解 Cortex XSIAM - Palo Alto Networks](https://www.paloaltonetworks.com/resources/videos/get-the-full-picture-on-cortex-xsiam) ## 为什么 SEM 对 IT 安全很重要? SEM 至关重要,因为它是抵御网络威胁的第一道防线。这就是在网络攻击发生时及时发现与处理漏洞后果之间的区别。SEM 的实时监控和警报系统可以迅速采取行动,最大限度地减少损失并保护敏感数据。 SEM 的主要目标是将正常活动--典型的用户行为、网络操作和系统进程--与可疑或恶意行为区分开来。这一过程包括使用预定义的规则、签名和算法对事件日志和日志数据进行关联,以识别表明潜在安全事件的模式。 通过实时监控和分析,SEM 可使安全小组迅速识别并应对可能预示着漏洞或即将发生的威胁的异常情况。此外,SEM 在合规性和监管方面也发挥着举足轻重的作用。 许多行业在严格的监管框架内运行,必须采取强有力的安全措施。SEM 通过提供全面的审计跟踪、事件响应能力和合规性评估报告,协助组织满足这些要求。 ## SEM 是如何运作的? SEM 可收集和分析 IT 环境中各种来源的日志数据。这就像拼图一样,每一块数据都有助于形成一幅更清晰的网络安全状况图,从而快速识别异常或恶意活动。 SEM 流程对组织的网络安全策略至关重要。它涉及一系列阶段,使安全小组能够及时有效地检测、调查和应对潜在的安全威胁。 ### 第一阶段:数据收集 这包括从防火墙、入侵检测系统和服务器等各种网络来源收集日志和事件。收集到的数据随后会储存在一个中央存储库中,以供分析。 ### 第二阶段:正常化 由于日志和事件可能因来源不同而具有不同的格式和结构,因此需要将其转换为标准格式,以便进行统一分析。这就需要将不同的日志字段映射到一个共同的模式中,以便于关联和分析。 ### 第三阶段:关联 这包括分析收集到的数据,找出表明存在安全威胁的模式或异常。这通常是通过机器学习和行为分析等高级分析技术来实现的,这些技术可以帮助检测传统基于规则的系统可能无法发现的复杂攻击模式。 ### 第四阶段:警报 当检测到潜在的安全威胁时,SEM 系统会生成警报或通知,供安全小组调查和应对。这些警报通常包括有关威胁性质、事件严重性以及建议采取的控制和缓解行动的详细信息。 ### 第五阶段事件响应 这包括采取适当行动,容器安全事件,减轻和补救。这可能包括隔离受影响的系统、阻止恶意流量、恢复备份以及进行取证分析以确定事件的根本原因。 通过遵循这些阶段,组织可以建立健全的 SEM 流程,主动检测和应对安全威胁,降低数据泄露和其他网络攻击的风险。 ## 场景检测和缓解内部威胁 ### 背景 组织简介:一家大型医疗机构,其网络上存储着敏感的病人数据。 信息技术基础设施:内部服务器和云服务相结合,对不同级别的员工权限进行访问控制。 ### 事件发生前阶段 SEM 实施:该组织利用先进的 SEM 系统对整个网络的实时事件进行监控和分析。 事件启动 可疑活动:账单部门的一名员工通常会访问一组特定的病人记录,但他开始访问许多与其日常职责无关的文件。这些文件包含敏感的病人信息。 ### 扫描电镜检测 实时监控:SEM 系统经配置后,可根据预定义规则标记任何异常访问模式。它能检测员工用户账户的异常数据访问行为。 警报生成:警报会自动触发并发送到网络安全团队,表明可能存在未经授权的访问或内部威胁。 事件评估:网络安全团队立即对警报进行审查。他们对访问日志进行评估,确认员工的行为明显偏离正常模式。 员工验证:小组与员工的主管联系,核实数据访问是否合法或是否属于分配任务的一部分。 ### 遏制与调查 账户暂停:一旦确认访问未经授权,该员工的账户将被暂时中止,以防止进一步的数据访问。 调查:网络安全团队会展开彻底调查,包括与员工面谈、详细审查访问日志以及检查数据外泄企图。 ### 决议 结果确定:调查显示,该员工出于好奇访问了患者数据,违反了组织的隐私政策。 已采取的行动根据组织的政策,该员工将受到纪律处分。将事件记录在案,并对访问控制进行审查。 ### 事故后分析 SEM 系统更新:对 SEM 规则进行更新,以精细调整对异常数据访问模式的检测,提高对潜在内部威胁的敏感性。 员工培训:还为所有员工组织了有关数据隐私和安全协议的额外培训课程,以防止类似事件的发生。 ### SIEM 软件如何工作 ![SIEM 软件可收集、存储、分析和报告网络中各种系统和应用程序生成的日志数据。](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/what-is-sem/siem-at-a-glance.png "SIEM 软件可收集、存储、分析和报告网络中各种系统和应用程序生成的日志数据。") *SIEM 软件可收集、存储、分析和报告网络中各种系统和应用程序生成的日志数据。* ## SIM vs. SEM vs. SIEM 将 SEM 想象成一个实时警报系统,在威胁发生时迅速识别出来。相比之下,安全信息管理(SIM)就像一个详细的记录员,一丝不苟地存储和分析历史数据。 它们共同组成了强大的二重奏,通常集成到安全信息和事件管理(SIEM)系统中,提供全面的安全健康状况概览。 在网络安全领域,了解 SIM、SEM 和 SIEM 之间的区别至关重要。它们的整合对于制定全面安全策略至关重要。SEM 和 SIM 是现在所谓 SIEM 的两大支柱,这两种不同的方法可定义如下: * SIM 系统收集和分析日志数据,包括网络和系统日志,以便长期存储,并生成报告,用于合规性目的。 * SEM 能够记录和评估事件数据,帮助安全或系统管理员分析、调整和管理信息安全架构、政策和程序。当检测到潜在的安全事件时,它能立即发出警报,让安全小组迅速做出反应。SEM 还能将不同来源的不同事件关联起来,帮助检测复杂的网络威胁。 * SIEM 系统结合了 SIM 和 SEM 功能,可长期存储和分析日志数据,并提供实时监控和响应功能。通过提供全面的安全概述,SIEM 能够检测需要实时事件和历史数据分析的复杂威胁。它们还具有 UEBA、SOAR 和高级威胁情报集成等高级功能。 用今天的话来说,要理解这些线索的来龙去脉,就必须明白 SIEM 工具已成为现代安全运营中心的标准解决方案。如今,先进的 SIEM 平台可作为 SEM 和 SIM 的神经中枢,将日志收集、规范化、关联和报告等功能作为一个连续的整体而非单独的功能提供。 SIEM 平台现在通常利用机器学习和人工智能来增强检测能力,从而能够在海量数据中更准确地识别威胁情报。 ## 安全事件管理 (SEM) 常见问题 ### SEM 与日志管理是相同还是不同? 编译和分析日志是 IT 安全事件管理的重要步骤,但日志文件的实际管理过程是一门在信息技术最佳实践中根深蒂固的学科。日志管理可汇总不同来源的日志,将其组织到一个集中位置。它通常涉及保留、归档、基本搜索和安全事件管理等任务。日志管理系统是一个存储库,安全分析人员可根据需要访问和分析日志。不过,它们一般可能无法提供自动安全分析或实时威胁检测。 ### 安全事件管理管理员的主要职责是什么? 安全事件管理管理员负责确保组织安全态势的有效性。在安全运营中心(SOC),SEM 管理员将是 SIEM 或 SOAR(安全协调自动化和响应)平台的关键用户。他们的职责包括实施和维护 SEM 工具、配置和优化以及监控和分析。最终,SEM 管理员将监督事件响应和补救过程,涉及调查、威胁预防和实施预防类似事件的措施。 ### 最早的一些 SEM 商业应用是什么? 商业 SEM 应用程序的先驱之一是 ArcSight 公司开发的 ArcSight ESM(企业安全管理器),它在 2000 年代初崭露头角。ArcSight ESM 也是最早推出的全面 SIEM 解决方案之一。 Palo Alto Networks 推出的 Cortex XSIAM 等更先进的产品使这类独立产品在市场上黯然失色。它们正在结合开箱即用的人工智能模型,Cortex XSIAM 等先进的解决方案远远超越了传统的 SEM 检测方法,可连接各种数据源的事件,从而大规模地准确检测和阻止威胁。通过这种方式,就可以自动执行安全任务,减少人工操作,并在分析师查看事件之前加快事件响应和修复。 相关内容 [什么是 SIEM 工具 了解 SIEM 工具及其工作原理](https://www.paloaltonetworks.cn/cyberpedia/what-are-siem-tools?ts=markdown) [货运公司利用 Cortex XSIAM 将事故解决时间缩短至 ~1 小时 北美一家货运公司的安全小组正在使用一系列的点解决方案,这些解决方案以大量的手工劳动使调查工作陷入困境。](https://www.paloaltonetworks.sg/customers/freight-company-reduces-incident-resolution-to-an-hour-with-cortex-xsiam) [XSIAM 解决方案简介 了解 Cortex XSIAM 如何利用机器智能和自动化的力量,从根本上改善安全成果并改变人工 SecOps 模式。](https://www.paloaltonetworks.cn/resources/techbriefs/cortex-xsiam?ts=markdown) [数据可见性和分类 许多组织对个人身份信息等关键数据类型没有足够的可见性。在面对审计和确定数据优先级时,这就成了一个问题...](https://www.paloaltonetworks.cn/prisma/cloud/cloud-data-security?ts=markdown) ![Share page on facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/facebook-circular-icon.svg) ![Share page on linkedin](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/linkedin-circular-icon.svg) [![Share page by an email](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/email-circular-icon.svg)](mailto:?subject=%E4%BB%80%E4%B9%88%E6%98%AF%E5%AE%89%E5%85%A8%E4%BA%8B%E4%BB%B6%E7%AE%A1%E7%90%86%EF%BC%88SEM%EF%BC%89%EF%BC%9F&body=%E4%BA%86%E8%A7%A3%E5%AE%89%E5%85%A8%E4%BA%8B%E4%BB%B6%E7%AE%A1%E7%90%86%20%28SEM%29%20%E7%9A%84%E5%9F%BA%E7%A1%80%E7%9F%A5%E8%AF%86%EF%BC%8C%E4%BB%A5%E5%8F%8A%E5%AE%83%E5%A6%82%E4%BD%95%E6%88%90%E4%B8%BA%E5%AE%89%E5%85%A8%E4%BF%A1%E6%81%AF%E5%92%8C%E4%BA%8B%E4%BB%B6%E7%AE%A1%E7%90%86%E7%9A%84%E5%85%B3%E9%94%AE%E7%BB%84%E6%88%90%E9%83%A8%E5%88%86%EF%BC%8C%E4%BD%86%E5%8F%88%E4%B8%8E%E4%B9%8B%E6%88%AA%E7%84%B6%E4%B8%8D%E5%90%8C%E3%80%82%20at%20https%3A//www.paloaltonetworks.cn/cyberpedia/what-is-security-event-management-sem) 返回页首 [上一页](https://www.paloaltonetworks.cn/cyberpedia/what-is-siem-logging?ts=markdown) 什么是 SIEM 日志? [下一页](https://www.paloaltonetworks.cn/cyberpedia/how-do-siem-tools-benefit-soc-teams?ts=markdown) How Do SIEM Tools Benefit SOC Teams? {#footer} ## 产品和服务 * [实时人工智能驱动的网络安全](https://www.paloaltonetworks.cn/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.cn/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown) * [云交付的安全服务](https://www.paloaltonetworks.cn/network-security/security-subscriptions?ts=markdown) * [高级威胁预防](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.cn/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown) * [企业数据丢失防护](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-iot-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.cn/network-security/medical-iot-security?ts=markdown) * [工业 OT 安全](https://www.paloaltonetworks.cn/network-security/industrial-ot-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [新一代防火墙](https://www.paloaltonetworks.cn/network-security/next-generation-firewall?ts=markdown) * [硬件防火墙](https://www.paloaltonetworks.cn/network-security/hardware-firewall-innovations?ts=markdown) * [软件防火墙](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.cn/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.cn/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.cn/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.cn/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.cn/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.cn/sase?ts=markdown) * [应用加速](https://www.paloaltonetworks.cn/sase/app-acceleration?ts=markdown) * [自主数字体验管理](https://www.paloaltonetworks.cn/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.cn/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.cn/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.cn/sase/sd-wan?ts=markdown) * [远程浏览器隔离](https://www.paloaltonetworks.cn/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [基于 AI 的安全运营平台](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.cn/prisma/cloud?ts=markdown) * [人工智能驱动的 SOC](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown) * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown) * [威胁情报和事件响应服务](https://www.paloaltonetworks.cn/unit42?ts=markdown) * [主动评估](https://www.paloaltonetworks.cn/unit42/assess?ts=markdown) * [事故响应](https://www.paloaltonetworks.cn/unit42/respond?ts=markdown) * [安全策略转型](https://www.paloaltonetworks.cn/unit42/transform?ts=markdown) * [发现威胁情报](https://www.paloaltonetworks.cn/unit42/threat-intelligence-partners?ts=markdown) ## 公司 * [关于我们](https://www.paloaltonetworks.cn/about-us?ts=markdown) * [人才招聘](https://jobs.paloaltonetworks.com/en/) * [联系我们](https://www.paloaltonetworks.cn/company/contact-sales?ts=markdown) * [企业责任](https://www.paloaltonetworks.com/about-us/corporate-responsibility) * [客户](https://www.paloaltonetworks.cn/customers?ts=markdown) * [投资者关系](https://investors.paloaltonetworks.com/) * [位置](https://www.paloaltonetworks.com/about-us/locations) * [新闻资讯](https://www.paloaltonetworks.cn/company/newsroom?ts=markdown) ## 热门链接 * [博客](https://www.paloaltonetworks.com/blog/?lang=zh-hans) * [社区](https://www.paloaltonetworks.com/communities) * [内容库](https://www.paloaltonetworks.cn/resources?ts=markdown) * [网络百科](https://www.paloaltonetworks.com/cyberpedia) * [事件中心](https://events.paloaltonetworks.com/) * [管理电子邮件首选项](https://start.paloaltonetworks.com/preference-center) * [产品清单](https://www.paloaltonetworks.cn/products/products-a-z?ts=markdown) * [产品认证](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance) * [报告漏洞](https://www.paloaltonetworks.com/security-disclosure) * [网站地图](https://www.paloaltonetworks.cn/sitemap?ts=markdown) * [技术文档](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [请勿出售或分享我的个人信息](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [隐私](https://www.paloaltonetworks.com/legal-notices/privacy) * [信任中心](https://www.paloaltonetworks.com/legal-notices/trust-center) * [使用条款](https://www.paloaltonetworks.com/legal-notices/terms-of-use) * [文档](https://www.paloaltonetworks.com/legal) 版权所有 © 2026 Palo Alto Networks。保留所有权利 * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/) * CN Select your language