PCSAE Online Practice Questions and Answers
Questions 4
Threat Intel search queries can be shared with which of the following?
A. Users defined in the platform (email or username)
B. Other organizations via the Marketplace
C. Users outside XSOAR via email invite
D. Roles defined in the platform
Questions 5
Which of these would be the most operationally efficient repository for moving XSOAR custom content from a development server to a production environment?
A. A content repository specified in the Marketplace
B. Remote git repository specified in the dev-prod configuration parameters
C. The development server's default repository
D. Cortex XSOAR public content repository
Questions 6
What are three different loop types in a playbook? (Choose three.)
A. Automation
B. Built-in
C. Data collection
D. Conditional
E. For-each
Questions 7
After executing the DeleteContext automation with all=yes argument, how would the context data of an incident present?
A. All the data, including the incident key will be deleted, and the context data will be completely empty.
B. No difference, the automation cannot be executed manually.
C. All context data, including custom incident fields will be deleted, system incident fields will remain.
D. All context data, except the incident key will be deleted.
Questions 8
What is the function of timer SLA fields in Cortex XSOAR?
A. To track SLA breaches per playbook
B. To run a script that executes on SLA assignment
C. To automatically alert the analyst on SLA breach
D. To count the time between one or more tasks
Questions 9
Management would like to get an incident report automatically following an incident's closure. How would this be accomplished?
A. Define a task in a playbook to generate an incident report before the closure occurs
B. Manually create an `Incident Report'
C. Configure post-processing using a script
D. Create an `Incident Report' from the Reports page
Questions 10
What is the difference between labels and fields?
A. Fields can be used in playbooks and labels cannot
B. Fields are indexed in the database and labels are not
C. Labels can be used in queries and fields cannot
D. Labels are indexed in the database and fields are not
Questions 11
On the System Diagnostics page, what is the default minimum size for a Work Plan to be considered big?
A. 2MB
B. 3MB
C. 1MB
D. 5MB
Questions 12
An administrator wants to send an email via the Mail Sender integration. Which of the following out of the box methods would be used for that?
A. XSOAR D2 agent
B. external integration command
C. XSOAR shared agent
D. common automation script
Questions 13
DRAG DROP
Arrange these steps in the order that they occur during an incident fetch.
Select and Place:
Home | About Us | Contact Us | FAQ | Guarantee Policy | Privacy Policy
Any charges made through this site will appear as Global Simulators Limited. All trademarks are the property of their respective owners.
Copyright © 2004-2026 pass2lead.com, All Rights Reserved.