1. Palo Alto Networks PSE Cortex Practice Questions Palo Alto Networks System Engineer - Cortex Professional Order our PSE Cortex Practice Questions Today and Get Ready to Pass with Flying Colors! PSE Cortex Practice Exam Features | QuestionsTube Latest & Updated Exam Questions Subscribe to FREE Updates Both PDF & Exam Engine Download Directly Without Waiting https://www.questionstube.com/exam/pse-cortex/ At QuestionsTube, you can read PSE Cortex free demo questions in pdf file, so you can check the questions and answers before deciding to download the Palo Alto Networks PSE Cortex practice questions. These free demo questions are parts of the PSE Cortex exam questions. Download and read them carefully, you will find that the PSE Cortex test questions of QuestionsTube will be your great learning materials online. Share some PSE Cortex exam online questions below. 1 / 3

2. 1. Which task setting allows context output to a specific key? a. Extend context b. Task output c. Stop on errors d. tags Answer: A 2. Which statement applies to a Cortex XSOAR engine that is part of a load-balancing group? a. It does not appear in the engine drop-down menu when configuring an integration instance b. It must be in a load-balancing group with at least three additional members c. It can be used separately as an engine only if directly connected to the XSOAR server d. It must have port 443 open to allow the XSOAR server to establish a connection Answer: C PSE Cortex Practice Questions - Get Ready with the Latest Palo Alto Networks PSE Cortex Practice Test 3. An adversary attempts to communicate with malware running on a network in order to control malware activities or to exfiltrate data from the network. What Cortex XDR Analytics alert will this activity most likely trigger? a. Uncommon local scheduled task creation b. Malware c. New administrative behavior d. DNS Tunneling Answer: D 4. Cortex XSOAR has extracted a malicious Internet Protocol (IP) address involved in command-and- control (C2) traffic. What is the best method to block this IP from communicating with endpoints without requiring a configuration change on the firewall? a. Have XSOAR automatically add the IP address to a deny rule in the firewall b. Have XSOAR automatically add the IP address to a threat intelligence management (TIM) malicious IP list to elevate priority of future alerts c. Have XSOAR automatically add the IP address to an external dynamic list (EDL) used by the firewall d. Have XSOAR automatically create a NetOps ticket requesting a configuration change to the firewall to block the IP Answer: C 5. A Cortex XDR Pro administrator is alerted to a suspicious process creation security event from multiple users who believe these events are false positives. Which two steps should be taken confirm the false positives and create an exception? (Choose two) a. In the Cortex XDR security event, review the specific parent process, child process, and command line arguments b. Contact support and ask for a security exception c. Within the Malware Security profile, add the specific parent process, child process, and command line argument to the child process whitelist d. Within the Malware Security profile, disable the Prevent Malicious Child Process Execution module Answer: A.C 2 / 3