Frontier AI has pushed adversary speed beyond human limits. By using advanced models to execute attacks 100x faster, attackers have rendered manual SecOps obsolete. To survive this shift, the SOC must move at the speed of the autonomous adversary.

In this session, you’ll learn how to:
- Detect and stop attacks in real-time with AI-driven analytics that outpace automated threats.
- Eliminate the triage bottleneck and cut alert noise by up to 99% using agentic AI.
- Scale your team by enabling analysts at any level to operate with expert-level precision.

See the agentic SOC in action with a live demo of Cortex XSIAM neutralizing an AI-driven attack in real-time.

For years, identity and access management meant managing access, passwords, and privileged accounts — all in silos. What worked for yesterday's organization no longer holds up in today's AI-speed business. As organizations expand across cloud, SaaS, and AI-driven workflows, identity has become the layer that either holds everything together or becomes the biggest liability. This session looks at how Palo Alto Networks and CyberArk are redefining identity not as a point solution, but as a foundational control plane — one that secures every identity with the right level of privilege controls, enforces consistent guardrails across human and machine access, and feeds intelligence across your entire security environment. The result is an architecture where identity isn't just managed, it's a strategic control point for the enterprise.

AI is becoming the enterprise workforce, executing tasks at machine speed and shifting risk from access to autonomous action. At the same time, infrastructure has become dynamic—spanning containers, multicloud environments, and high-throughput AI workloads that demand hyperscale enforcement and microperimeter-level control. In this session, see how the Prisma AIRS platform governs agent identity, enforces real-time control across the AI lifecycle, and secures your infrastructure.

The rise of AI has transformed the modern workforce and redefined the nature of risk. With the browser acting as the new workspace and AI agents operating at machine speed, legacy security cannot keep pace. Prisma SASE is the unified platform designed to power this new era. By bringing together secure agentic browsing, AI-lifecycle data protection, and autonomous operations, Prisma SASE addresses critical risks like "AI data sprawl," prompt injection, and agent hijacking. Join us to learn how to transform security from a barrier into a growth engine, enabling your business to innovate at machine speed.

Your cloud security must evolve from simply seeing risks to autonomously stopping them. As Frontier models like Mythos autonomously chain vulnerabilities in minutes, the manual handoffs between siloed teams create the very delays attackers exploit. To survive this shift, you must move to an agentic CNAPP that bridges the gap between code, cloud, and the SOC, transforming your defense from passive visibility into real-time action.

In this session, you’ll learn how to:
- Unify security workflows by connecting AppSec and cloud security with real-time SOC telemetry. 
- Prevent risk before production by identifying and remediating issues before they ship.
- Move from visibility to action with autonomous agents that remediate risks in real-time.

See how an agentic CNAPP evolves your operating model to outpace AI-driven vulnerability discovery and exploitation.

Security teams are hitting a breaking point as the ‘complexity debt’ of fragmented tools meets the speed of AI-driven threats and the looming shift to a post-quantum world. This session demonstrates how to move beyond reactive defense with a unified network security platform. Learn how AI-driven services and integrated management remove operational silos, accelerate real-time response, and future-proof your data ahead of the quantum horizon.

Modern adversaries replace predictable playbooks with machine-generated attack chains that can breach traditional controls in seconds. By targeting agentic tools and AI agents, attackers leverage created blind spots that legacy defenses miss. To stop these threats, your prevention must be as autonomous as the adversary.

In this session, you’ll learn how to:
- Neutralize stealthy attacks in real-time by identifying behavioral anomalies unique to automated threats.
- Expose attack chains by correlating cross-domain signals into a single high-priority incident.
- Secure the agentic ecosystem by closing blind spots in AI agents, browser extensions, and agentic tools

See how the combination of Cortex XDR and Koi Security breaks the kill chain of the most advanced AI-driven attacks.

The security landscape is rapidly changing due to the shrinking lifespan of public TLS certificates, moving from 200 days to an impending 47-day cycle. This transition makes manual renewal processes an operational liability, exponentially increasing the risk of business-impacting service outages as workloads are set to increase twelve-fold. Relying on calendar reminders is no longer a human-scale problem. Surviving this cryptographic reset requires a shift to fully automated, comprehensive visibility and lifecycle management. We introduce Next-Generation Trust Security (NGTS), a native capability of our network security platform. NGTS leverages network-native discovery and agentic automation to manage certificates, effectively shrinking the effort of remediating an expiring certificate from four hours to zero minutes. Gain visibility. Facilitate operational resilience. Build cryptographic agility.

Machine-speed attacks have rewritten the crisis timeline. This interactive simulation puts you in the crosshairs of an AI-driven breach to deconstruct how modern adversaries operate. Learn to operationalize Unit 42 expertise to build a resilient program that’s always one step ahead of autonomous attacks.

In this session, you’ll learn how to:
- Deconstruct the attack lifecycle using intelligence from thousands of real-world Unit 42 cases.
- Anticipate adversary moves by validating your controls against machine-scale tactics.
- Execute rapid response by applying intelligence-driven playbooks when seconds count.

Experience a high-stakes crisis simulation led by Unit 42 experts and walk away with a framework to neutralize the next generation of attacks.

This workshop introduces a unified approach to securing modern, distributed environments across cloud and hybrid infrastructure using Palo Alto Networks Hybrid Mesh. As environments scale and cryptographic requirements evolve, security teams must move from fragmented tools to continuous, real-time operations. Participants will gain practical insight into how a single platform can reduce risk and complexity while improving visibility and control. Learn how to simplify operations, enforce consistent threat prevention, and use AI-driven, agentic remediation to identify and respond to threats faster. The session will also cover how to manage shrinking certificate lifecycles and evolving encryption requirements, helping prevent outages and prepare for quantum-safe security through centralized management with Strata Cloud Manager.

This hands-on workshop shows how to secure the AI enterprise from dynamic infrastructure to autonomous execution using Prisma AIRS 3.0 and the AI Runtime Firewall. Learn how to protect containerized and multicloud workloads with microperimeter-based controls and hyperscale enforcement, while discovering and governing AI agents. You will also learn to apply red teaming to test agent behavior, enforce real-time policies through the AI Gateway, and implement a unified security model that scales from infrastructure to agentic AI systems.

Privileged access is your highest-risk attack surface. This lab puts you in control of it.
Get hands-on with the CyberArk Identity Security Platform and work through how modern PAM actually operates: uncovering hidden privilege risks, enforcing Just-in-Time access, and eliminating standing credentials with Zero Standing Privileges — across infrastructure, cloud, and applications.
Walk away knowing how to reduce your attack surface from day one — and what a ZSP-first privileged access program looks like in practice.