Palo_Alto_Networks
SECOPS-PRO · Question #77
SECOPS-PRO Question #77: Real Exam Question with Answer & Explanation
Sign in or unlock SECOPS-PRO to reveal the answer and full explanation for question #77. The question stem and answer options stay visible for context.
Question
During a routine security audit, it's discovered that a critical server was successfully breached weeks ago by an advanced persistent threat (APT) group. The breach involved sophisticated lateral movement and data exfiltration, yet no alerts were generated by the existing security infrastructure, which includes a Palo Alto Networks Cortex XDR endpoint protection platform and a WildFire cloud- based threat analysis service. How would you classify this scenario from the perspective of the security controls, and what is the primary challenge it presents for a SOC?
Options
- ATrue Positive; The controls successfully identified a threat but the SOC failed to respond. The
- BFalse Positive; The controls over-alerted, desensitizing the SOC to the actual threat. The
- CFalse Negative; The security controls failed to detect an actual breach. The challenge is
- DTrue Negative; The controls correctly determined there was no threat. The challenge is validating
- EThis is an unknown state, requiring further investigation to classify. The challenge is lack of
Unlock SECOPS-PRO to see the answer
You've previewed enough free SECOPS-PRO questions. Unlock SECOPS-PRO for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.