Palo_Alto_Networks
SECOPS-PRO · Question #65
SECOPS-PRO Question #65: Real Exam Question with Answer & Explanation
Sign in or unlock SECOPS-PRO to reveal the answer and full explanation for question #65. The question stem and answer options stay visible for context.
Question
An organization is using a bespoke vulnerability management system that integrates with Palo Alto Networks Panorama for firewall rule management and XSOAR for incident orchestration. A new zero-day vulnerability (CVE-2023-XXXX) affecting a critical web application is disclosed. The vulnerability management system flags all instances of this application. For effective incident categorization and prioritization, what dynamic attributes or processes are crucial to incorporate, going beyond mere vulnerability detection?
Options
- AThe CVSS score of the CVE and the number of affected instances. While important, these are
- BLeveraging external threat intelligence feeds (e.g., Unit 42, CISA KEV) to confirm active
- CAssigning all alerts related to CVE-2023-XXXX to the highest priority, irrespective of whether the
- DPrioritizing remediation based solely on the operating system of the affected server, as OS-level
- EIgnoring the vulnerability until a patch is released, as immediate action is often disruptive.
Unlock SECOPS-PRO to see the answer
You've previewed enough free SECOPS-PRO questions. Unlock SECOPS-PRO for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.