Cortex Xpanse Product Security - 1.0 - Cortex XPANSE - Cortex - Security Operations

Cortex Xpanse Assess User Guide

Creation date
Last date published
User Guide

Cortex Xpanse defines your public internet attack surface and tells you what you need to do to minimize risk. You’ll know what to do first, how to fix it, and what it means to your organization. To keep your information safe, Cortex Xpanse is designed with multiple layers of protection, distributed across a scalable, secure infrastructure.

These layers of protection include:

  • Cortex Xpanse data at rest are encrypted using 256-bit Advanced Encryption Standard (AES). Cortex Xpanse data is stored in a combination of Amazon Web Services (AWS) and Google Cloud Platform (GCP).

  • Cortex Xpanse uses Secure Sockets Layer (SSL)/Transport Layer Security (TLS) to protect data in transit between Cortex Xpanse application and Cortex Xpanse servers.

  • SSL/TSL creates a secure tunnel protected by 128-bit or higher Advanced Encryption Standard (AES) encryption.

  • Two-factor authorization (2FA) and Single sign-on (SSO) is available for an extra layer of security at login.

  • Cortex Xpanse applications and infrastructure are regularly tested for security vulnerabilities and hardened to enhance security and protect against attacks.