[2026] Palo Alto Networks System Engineer - Cortex Professional

문제1

Which two areas of Cortex XDR are used for threat hunting activities? (Choose two.)

A. query builder

B. indicators of compromise (IOC) rules

C. host insights module

D. live terminal

정답: A,C

설명: (Fast2test 회원만 볼 수 있음)

문제2

A Cortex XSOAR customer has a phishing use case in which a playbook has been implemented with one of the steps blocking a malicious URL found in an email reported by one of the users.
What would be the appropriate next step in the playbook?

A. Email the CISO to advise that malicious email was found.

B. Change the user's password.

C. Disable the user's email account.

D. Email the user to confirm the reported email was phishing.

정답: D

설명: (Fast2test 회원만 볼 수 있음)

문제3

A customer has purchased Cortex XSOAR and has a need to rapidly stand up the product in their environment. The customer has stated that their internal staff are currently occupied with other projects.
Which Palo Alto Networks service offering should be recommended to the customer?

A. QuickStart

B. Fast-Track

C. Onboardinq

D. Deployment

정답: A

설명: (Fast2test 회원만 볼 수 있음)

문제4

Cortex XDR can schedule recurring scans of endpoints for malware. Identify two methods for initiating an on- demand malware scan (Choose two )

A. Telnet

B. Endpoint > Endpoint Management

C. the local console

D. Response > Action Center

정답: B,D

문제5

In the DBotScore context field, which context key would differentiate between multiple entries for the same indicator in a multi-TIP environment?

A. Vendor

B. Type

C. Using

D. Brand

정답: A

문제6

What is the function of reputation scoring in the Threat Intelligence Module of Cortex XSIAM?

A. It allows for comparison between open-source intelligence and paid services.

B. It resolves conflicting scores from different vendors with the same indicator.

C. It provides a statistical model for combining scores from multiple vendors

D. It helps identify threat feed vendors with invalid content.

정답: B

설명: (Fast2test 회원만 볼 수 있음)

문제7

Given the exception thrown in the accompanying image by the Demisto REST API integration, which action would most likely solve the problem?

Which two playbook functionalities allow looping through a group of tasks during playbook execution?
(Choose two.)

A. Sub-Play books

B. Playbook Functions

C. Playbook Tasks

D. Generic Polling Automation Playbook

정답: A,D

문제8

In addition to migration and go-live, what are two best-practice steps for migrating from SIEM to Cortex XSIAM? (Choose two.)

A. Execution

B. Conclusion

C. Certification

D. Testing

정답: B,D

문제9

Cortex XDR external data ingestion processes ingest data from which sources?

A. windows event logs and syslogs only

B. windows event logs, syslogs, and custom external sources

C. windows event logs only

D. syslogs only

정답: B

설명: (Fast2test 회원만 볼 수 있음)

문제10

Which Cortex XDR Agent capability prevents loading malicious files from USB-connected removable equipment?

A. Agent Management

B. Device Customization

C. Agent Configuration

D. Device Control

정답: D

설명: (Fast2test 회원만 볼 수 있음)

문제11

A customer wants to modify the retention periods of their Threat logs in Cortex Data Lake.
Where would the user configure the ratio of storage for each log type?

A. Write a GPO for each endpoint agent to check in less often

B. Within the TMS, create an agent settings profile and modify the Disk Quota value

C. It is not possible to configure Cortex Data Lake quota for specific log types.

D. Go to the Cortex Data Lake App in Cloud Services, then choose Configuration and modify the Threat Quota

정답: D

문제12

Which two Cortex XSOAR incident type features can be customized under Settings > Advanced > Incident Types? (Choose two.)

A. adding new fields to an incident type

B. dropping new incidents of the same type that contain similar information

C. defining whether a playbook runs automatically when an incident type is encountered

D. setting reminders for an incident service level agreement

정답: A,C

설명: (Fast2test 회원만 볼 수 있음)

Palo Alto Networks System Engineer - Cortex Professional - PSE-Cortex무료 덤프문제 풀어보기

우리와 연락하기

유용한 링크

최신 업데이트