New Year Special Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

  1. Home
  2. Paloalto Networks
  3. Palo Alto Certifications and Accreditations
  4. PCSAE - Palo Alto Networks Certified Security Automation Engineer

PCSAE Exam Dumps - Palo Alto Networks Certified Security Automation Engineer

Go to page:
Question # 17

Management would like to get an incident report automatically following an incident’s closure. How would this be accomplished?

A.

Define a task in a playbook to generate an incident report before the closure occurs

B.

Manually create an ‘Incident Report’

C.

Configure post-processing using a script

D.

Create an ‘Incident Report’ from the Reports page

Full Access
Question # 18

Reliability scores in XSOAR range from A through F. What do A and F stand for?

A.

F - Reliability cannot be judged, A - Completely Reliable

B.

F - Not reliable, A - Usually Reliable

C.

F - Not usually reliable, A - Fairly Reliable

D.

F - Unreliable, A - Completely Reliable

Full Access
Question # 19

What is the difference between labels and fields?

A.

Fields can be used in playbooks and labels cannot

B.

Fields are indexed in the database and labels are not

C.

Labels can be used in queries and fields cannot

D.

Labels are indexed in the database and fields are not

Full Access
Question # 20

An engineer would like to change an incident’s SLA according to the severity field changes. How can the engineer achieve this task?

A.

Use a field trigger script

B.

Use a field display script

C.

Create a job that queries for incident severity changes

D.

Change the SLA manually every time the severity changes

Full Access
Question # 21

An incident field is created having the display name as Source_IP. How can the field be accessed?

A.

${incident.sourceip}

B.

${incident.Source_IP}

C.

${incident.srcip}

D.

${incident.Source IP}

Full Access
Question # 22

A Cortex XSOAR Administrator is tasked with building a button for an analyst in order for the analyst to be assigned to the incident as an owner. What is the process?

A.

Edit the incident layout to add a new button that calls the AssignAnalystToIncident automation with no argument

B.

Edit the incident layout to add a new button that calls the AssignToMeButton automation with argument assignBy={me}

C.

Edit the incident layout to add a new button that calls the AssignAnalystToIncident automation with argument owner={me}

D.

Edit the incident layout to add a new button that calls the AssignAnalystToIncident automation with argument assignBy=current

Full Access
Question # 23

What is the default task type when creating an empty task?

A.

Standard (Manual)

B.

Conditional

C.

Section header

D.

Standard (Automated)

Full Access
Go to page:

Hot Exams

ADM-201 Dumps
Platform-App-Builder Dumps
AZ-500 Dumps
350-701 Dumps
SY0-601 Dumps
NCSE-Core Dumps
PDP9 Dumps
DP-203 Dumps
AZ-700 Dumps
NSE7_EFW-7.0 Dumps
Integration-Architect Dumps
CS0-003 Dumps