PSE-CORTEX Exam Questions

Which service helps uncover attackers wherever they hide by combining world-class threat hunters with Cortex XDR technology that runs on integrated endpoint, network, and cloud dat...

A Cortex XDR Pro administrator is alerted to a suspicious process creation security event from multiple users who believe these events are false positives. Which two steps should b...

Which element displays an entire picture of an attack, including the root cause or delivery point?

Which step is required to prepare the virtual desktop infrastructure (VDI) golden image?

Which statement applies to the differentiation of Cortex XDR from security information and event management (SIEM)?

Which method is used for third-party network data consumption?

Which product enables the discovery, exchange, and contribution of security automation playbooks, built into Cortex XSOAR?

What is a benefit of user entity behavior analytics (UEBA) over security information and event management (SIEM)?

Which Cortex XDR license is required for a customer that requests endpoint detection and response (EDR) data collection capabilities?

Which task setting allows context output to a specific key?

Which integration allows data to be pushed from Cortex XSOAR into Splunk?

A customer has purchased Cortex Data Lake storage with the following configuration, which requires 2 TB of Cortex Data Lake to order: - support for 300 total Cortex XDR clients all...

What is a key difference between audit users and full users in Cortex XSOAR?

Which feature of Cortex Xpanse allows it to identify previously unknown assets?

How does a clear understanding of a customer's technical expertise assist in a hand off following the close of an opportunity?

A customer has purchased Cortex XDR and requires 24/7 monitoring of the platform. However, the customer only has staff available during business hours. Which Palo Alto Networks off...

A customer has purchased Cortex XSOAR and has a need to rapidly stand up the product in their environment. The customer has stated that their internal staff are currently occupied...

Which service helps identify attackers by combining world-class threat intelligence with Cortex XSIAM technology?

What is the difference between the intel feed's license quotas of Cortex XSOAR Starter Edition and Cortex XSOAR (SOAR + TIM)?

What must a customer deploy prior to collecting endpoint data in Cortex XSIAM?

What is the primary purpose of Cortex XSIAM's machine learning led design?

Within Cortex XSIAM, how does the integration of Attack Surface Management (ASM) provide a unified approach to security event management that traditional SIEMs typically lack?

Which consideration should be taken into account before deploying Cortex XSOAR?

A customer is hesitant to directly connect their network to the Cortex platform due to compliance restrictions. Which deployment method should the customer use to ensure secure con...

What is the primary function of an engine in Cortex XSOAR?

Which feature of Cortex XSIAM helps analyst reduce the noise and false positives that often plague traditional SIEM systems?

Why is Premium Customer Success an important part of any Cortex bill of materials?

What is the primary mechanism for the attribution of attack surface data in Cortex Xpanse?

Which resource can a customer use to ensure that the Cortex XDR agent will operate correctly on their CentOS 07 servers?

Which technology allows a customer to integrate Cortex Xpanse with third-party applications or services, assets, and IP ranges while leveraging investigation capabilities?

Where is the best place to find official resource material?

What does Cortex Xpanse ingest from XDR endpoints?

Approximately how many Cortex XSOAR marketplace integrations exist?

How does Cortex XSOAR automation save time when a phishing incident occurs?

When running a Cortex XSIAM proof of value (POV), why is it important to deploy the Cortex XDR agent?

Which statement best describes the benefits of the combination of Prisma Cloud, Cortex Xpanse, and partner services?

A customer has 2700 endpoints. There is currently concern about recent attacks in their industry and threat intelligence from a third-party subscription. In an attempt to be proact...

What are the key capabilities of the ASM for Remote Workers module?

In addition to incident volume, which four critical factors must be evaluated to determine effectiveness and ROI on cybersecurity planning and technology?

An existing Palo Alto Networks SASE customer expresses that their security operations practice is having difficulty using the SASE data to help detect threats in their environment....

When preparing the golden image in a Cortex XDR Virtual Desktop Infrastructure (VDI) deployment, which step is required?

Which two troubleshooting steps should be taken when an integration is failing to connect? (Choose two.)

What is a requirement when integrating Cortex XSIAM or Cortex XDR with other Palo Alto Networks products?

Why is it important to document notes from the Proof of Value (POV) for post-sales hand off?

What are two ways Cortex XSIAM monitors for issues with data ingestion? (Choose two.)

How can the required log ingestion license be determined when sizing a Cortex XSIAM deployment?

Which feature of Cortex XSIAM displays an entire picture of an attack, including the originating process or delivery point?

Which feature in Cortex XSIAM extends analytics detections to all mapped network and authentication data?

What are two ways a customer can configure user authentication access Cortex Xpanse? (Choose two.)

What is the recommended first step in planning a Cortex XDR deployment?