PSE-Cortex試験無料問題集（170題）「Palo Alto Networks System Engineer

出題：1

What is the difference between the intel feed's license quotas of Cortex XSOAR Starter Edition and Cortex XSOAR (SOAR + TIM)?

A. Cortex XSOAR Starter Edition includes up to 5 active feeds and 100 indicators/fetch.

B. In Cortex XSOAR (SOAR + TIM), intelligence detail view and relationships data are not included.

C. In Cortex XSOAR (SOAR + TIM), Unit 42 Intelligence is not included.

D. Cortex XSOAR Started Edition has unlimited access to the Threat Intel Library.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

In addition to incident volume, which four critical factors must be evaluated to determine effectiveness and ROI on cybersecurity planning and technology?

A. People, staffing costs, duplicates, false positives

B. People, security controls, mean time to detect, false positives

C. Standard operating procedures, staffing costs, duplicates, mean time to respond

D. Analyst, training costs, duplicated, false positives

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

Which feature of Cortex Xpanse allows it to identify previously unknown assets?

A. Scheduled network scanning

B. Active directory enumeration

C. Dynamic asset registration

D. Continuous internet scanning

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

When running a Cortex XSIAM proof of value (POV), why is it important to deploy the Cortex XDR agent?

A. It provides telemetry for stitching and analytics.

B. It is used to enforce license compliance.

C. It will prevent all threats in the environment.

D. It runs automation daybooks on the endpoints.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

How does DBot score an indicator that has multiple reputation scores?

A. uses the least severe score

B. uses the most severe score scores

C. uses the average score

D. the reputation as undefined

正解：B 解答を投票する

出題：6

What is the retention requirement for Cortex Data Lake sizing?

A. number of VM-Series NGFW

B. number of endpoints

C. logs per second

D. number of days

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

What is the function of reputation scoring in the Threat Intelligence Module of Cortex XSIAM?

A. It allows for comparison between open-source intelligence and paid services.

B. It resolves conflicting scores from different vendors with the same indicator.

C. It helps identify threat feed vendors with invalid content.

D. It provides a statistical model for combining scores from multiple vendors

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

Which service helps identify attackers by combining world-class threat intelligence with Cortex XSIAM technology?

A. Threat Intelligence Platform

B. Virtual Desktop Infrastructure

C. Cloud Identity Engine

D. Managed Threat Hunting

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

What does DBot use to score an indicator that has multiple reputation scores?

A. average score

B. most severe score

C. undefined score

D. least severe score

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

What is used to display only file entries in a War Room?

A. incident files section in layout builder

B. files and attachments filters

C. files from War Room CLI WW

D. /files from War Room CLI

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：11

The certificate used for decryption was installed as a trusted root CA certificate to ensure communication between the Cortex XDR Agent and Cortex XDR Management Console What action needs to be taken if the administrator determines the Cortex XDR Agents are not communicating with the Cortex XDR Management Console?

A. reinstall the root CA certificate

B. disable SSL decryption

C. enable SSL decryption

D. add paloaltonetworks com to the SSL Decryption Exclusion list

正解：A 解答を投票する

出題：12

Why is reputation scoring important in the Threat Intelligence Module of Cortex XSOAR?

A. It deconflicts prioritization when two vendors give different scores for the same indicator.

B. It helps identify threat intelligence vendors with substandard content.

C. It provides a mathematical model for combining scores from multiple vendors.

D. It allows for easy comparison between open-source intelligence and paid services.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：13

Which two filter operators are available in Cortex XDR? (Choose two.)

A. !*

B. < >

C. not Contains

D. =>

正解：A,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

An adversary attempts to communicate with malware running on a network in order to control malware activities or to exfiltrate data from the network.
Which Cortex XDR Analytics alert will this activity most likely trigger?

A. new administrative behavior

B. malware

C. uncommon local scheduled task creation

D. DNS Tunneling

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：15

A customer is hesitant to directly connect their network to the Cortex platform due to compliance restrictions.
Which deployment method should the customer use to ensure secure connectivity between their network and the Cortex platform?

A. Elasticsearch

B. Broker VM

C. Syslog collector

D. Windows Event Collector

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

PSE-Cortex試験無料問題集「Palo Alto Networks System Engineer - Cortex Professional 認定」