New Year Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Paloalto Networks
  3. Security Operations
  4. XSOAR-Engineer
  5. Palo Alto Networks XSOAR Engineer Questions and Answers

Pass the Paloalto Networks Security Operations XSOAR-Engineer Questions and answers with CertsForce

 Paloalto Networks Exams      Go to Exam Detail      Get Premium Access
Viewing page 2 out of 7 pages
Viewing questions 11-20 out of questions
Questions # 11:

What is needed to send a survey with multiple questions to a customer?.

Options:
A.

Data Collection.

B.

Section Header task.

C.

Conditional Ask.

D.

Survey task.

Expert Solution
Questions # 12:

A SOC manager built a dashboard and would like to share the dashboard with other team members. How would the SOC manager create a dashboard that meets this requirement?

Options:
A.

Manually share the dashboard through user emails

B.

Dashboard is shared to all XSOAR users

C.

Propagate the dashboard based on SAML authentication

D.

Dashboard is shared to all XSOAR users in a selected role

Expert Solution
Questions # 13:

Which two options may be added when a content pack is being installed? (Choose two.)

Options:
A.

Lists

B.

Roles

C.

Other content packs

D.

Indicator layouts

Expert Solution
Questions # 14:

An engineer would like to present a trend using widgets to compare to a previous week’s data. Which two methods will allow the engineer to meet the requirement? (Choose two.)

Options:
A.

Create widget of type Line, check ‘Display Trend’ and define as 7 days ago

B.

Create a custom widget using a new incident query

C.

Create widget of type Number, check ‘Display Trend’ and define as 7 days ago

D.

Create a custom widget using a script

Expert Solution
Questions # 15:

A SOC analyst needs to retrieve the list of all open phishing incidents in the last 30 days. What is the correct query to use?

Options:
A.

-status:closed -category:job type:Phishing created:>="30 days ago"

B.

status:closed -category:jobandtype:Phishing created:>="30 days ago"

C.

-status:closed -category:jobandtype:Phishing created:<="30 days ago"

D.

-status:closed -category:job type:Phishing created:="30 days ago"

Expert Solution
Questions # 16:

Based on the image below, what could be the reason for this behavior?.

Question # 16

Options:
A.

Indicator Reputation from the feed is set to "Malicious.".

B.

Source Reliability needs to be increased to "A - Completely reliable.".

C.

The Indicator Expiration Method needs to be set to "Never Expire.".

D.

The Traffic Light Protocol Color is empty.

Expert Solution
Questions # 17:

In which two ways can data be transferred between playbooks and sub-playbooks? (Choose two.)

Options:
A.

Inputs and outputs

B.

Through integration context

C.

Automatically extracted by sub-playbooks

D.

From context data, if context is shared globally

Expert Solution
Questions # 18:

The default expiration method for non-feed indicators is either to never expire or to expire after a specific period of time. How frequently does XSOAR check tor newly expired indicators?

Options:
A.

Every 24 hours

B.

Every 5 minutes

C.

Every 8 hours

D.

Every 1 hour

Expert Solution
Questions # 19:

What are two common use cases for conditional tasks? (Choose two.)

Options:
A.

They are used for branching paths in a playbook

B.

They are used to interact with users through survey functionality

C.

They are used to determine which incident will be executed

D.

They are used for sending a specific QUESTION NO: to a person or team

Expert Solution
Questions # 20:

Which tag must be applied to an Automation Script in order for it to be available when configuring an Indicator Type?

Options:
A.

reputation-script

B.

enrich

C.

reputationScript

D.

reputation

Expert Solution
Viewing page 2 out of 7 pages
Viewing questions 11-20 out of questions