Question 1

Which two items are stitched to the Cortex XDR causality chain'' (Choose two)

Afirewall alert

BSIEM alert

Cfull URL

Dregistry set value

Answer : A, C

Question 2

Which two log types should be configured for firewall forwarding to the Cortex Data Lake for use by Cortex XDR? (Choose two)

ASecurity Event

BHIP

CCorrelation

DAnalytics

Answer : A, B

Question 3

Which two items are stitched to the Cortex XDR causality chain'' (Choose two)

Afirewall alert

BSIEM alert

Cfull URL

Dregistry set value

Answer : A, C

Question 4

Which process in the causality chain does the Cortex XDR agent identify as triggering an event sequence?

Athe relevant shell

BThe causality group owner

Cthe adversary's remote process

Dthe chain's alert initiator

Answer : B

Question 5

The customer has indicated they need EDR data collection capabilities, which Cortex XDR license is required?

ACortex XDR Pro per TB

BCortex XDR Prevent

CCortex XDR Endpoint

DCortex XDR Pro Per Endpoint

Answer : D

Question 6

An antivirus refresh project was initiated by the IT operations executive. Who is the best source for discussion about the project's operational considerations'?

Aendpoint manager

BSOC manager

CSOC analyst

Ddesktop engineer

Answer : C

Free Palo Alto Networks System Engineer - Cortex Professional Questions for Palo Alto Networks System Engineer - Cortex Professional Exam as PDF & Practice Test Software