March 19, 2020


Check back soon for more information about Spark User New York. At Spark New York, you’ll network with fellow Palo Alto Networks users in the tri-state area and hear the latest updates and threat research from Palo Alto Networks. 

Spark New York will feature sessions to enhance your skills, including hands-on workshops and collaborative sessions so you will be able to take home actionable solutions and strategies for key security issues. 

Lunch and education sessions are provided free of charge. 


AMA Executive Conference Center
1601 Broadway
New York, NY 10019




9:00 a.m. - 9:15 a.m.  Welcome and Overview

9:15 a.m. - 10:00 a.m.  Opening Keynote: Building a vision of Zero Trust with Palo Alto Networks
We will kick off our morning with a vision of how security professionals can leverage the seamless fabric of Palo Alto Networks cybersecurity, and how to weave a mindset of Zero Trust throughout your organization.

The historical approach to business security has focused on defending a fixed perimeter. The objective was to keep threats on the outside of the perimeter of a wall around a castle. However, today the reality is that these same boundaries are harder to define and very porous. The assumption that systems and traffic within a cloud can be trusted is flawed because once a single workload is compromised, moving within a trusted zone is often easy. While it is often hard to directly attack high-value assets over internet, using an indirect attack using systems inside the cloud is much simpler, although more time-consuming. The Zero Trust architecture is the foundation of the future of public cloud security. The ability to authenticate and secure communication without relying on the location of the endpoints or the security of the network means that our clients can adopt the cloud paradigm and embrace its benefits of cost and flexibility while maintaining control of their data and compliance in virtual environments. We'll explore how to apply elements of Zero Trust, prevention and security automation to enable enterprises, like yours, to accelerate innovation through use of public cloud services and SaaS.

10:00 a.m. - 10:15 a.m.  Break

10:15 a.m. - 11:00 a.m.  Breakout Sessions

Enabling a More Simplified NGFW Cloud Deployment
Deploying any next generation firewall in a public cloud environment is challenging, not because of the firewall itself but because of the public cloud networking services that practitioners must use. The job of understanding and problem-solving around cloud networking complexities to ensure a successfully configured and maintained firewall deployment is no small task. It’s a task that is definitely possible — though difficult — and it comes with performance, scale, and visibility tradeoffs that need to be considered closely. Through intelligent orchestration and control service it's possible to simplify the deployment of Palo Alto Networks VM-Series Firewalls and eliminate those tradeoffs.

Cortex, Demisto and XDR: Oh My!
The recent acquisition of Demisto by Palo Alto Networks has a lot of users excited about the possibilities SOAR can provide their organization, but also confused about how Demisto and Cortex XDR fit together. In this session, we'll review the key features of each service, discuss how they work together, and what these services mean for your current Palo Alto Networks deployment. We'll cover ways to get better, faster response to incidents, how playbooks work, and how you can potentially save your organization some money!

11:00 a.m. - 11:15 a.m.  Break

11:15 a.m. - 11:45 a.m.  Fast and Furious - An Expert Competition

Get ready for a little friendly competition as we put our experts on the spot! Help us choose the questions you want answered, then hear our panel debate and discuss their best ideas. The most successful solution is the one that gets your vote!

Topics may include:

  • Centralized change management
  • Safe feature enablement
  • Choosing a public cloud

11:45 a.m. - 12:45 p.m.  Lunch with Partners

12:45 p.m. - 1:30 p.m.  Breakout Sessions

Automate Everything: The Future of Security Automation
As the set of products needed to manage an organization's security becomes more and more diverse, a bigger skills gap continues to open. Teams can't hire or train fast enough to manage threats at a human speed anymore, which makes automation a critical consideration. In this session, we'll dig into the details of what you can do with your current resources to see your organization clearly, report more accurately, and react faster with less manual work.

Topics covered include:

  • Validating your visibility and proactive health checks
  • Identifying high-impact automation changes
  • Leveraging your existing tools within the firewall and cloud platforms
  • Making notifications actionable
Impacting Your SoC's Success and How to Overcome Them

1:30 p.m. - 1:45 p.m. Break

1:45 p.m. - 2:30 p.m. Breakout Sessions

From Security Bottleneck to Business Enabler with Automation

MineMeld, What's Next
In this 45-minute talk we will be presenting the steps necessary to build a MineMeld server through the creation of the first Miner-aggregator-output workflow. Participants leave with the information necessary to start their journey using MineMeld as a tool to reduce their attack surface.

2:30 p.m. - 2:45 p.m. Break

2:45 p.m. - 3:30 p.m. Today's Threat Landscape

3:30 p.m. - 3:35 p.m.  Closing Comments: How to Leverage the Fuel Community to Become an Expert

*subject to change.






Indeni logo web


Nexum Logo.png