Paloalto Networks PCSAE Palo Alto Networks Certified Security Automation Engineer Online Training
Paloalto Networks PCSAE Online Training
The questions for PCSAE were last updated at Nov 22,2024.
- Exam Code: PCSAE
- Exam Name: Palo Alto Networks Certified Security Automation Engineer
- Certification Provider: Paloalto Networks
- Latest update: Nov 22,2024
Reliability scores in XSOAR range from A through F.
What do A and F stand for?
- A . F – Reliability cannot be judged, A – Completely Reliable
- B . F – Not reliable, A – Usually Reliable
- C . F – Not usually reliable, A – Fairly Reliable
- D . F – Unreliable, A – Completely Reliable
Which two incident search queries are valid? (Choose two.)
- A . created:>=ā7 daysā
- B . owner===admin
- C . role is Analyst
- D . status:closed Ccategory:job
Where can engineers add the post-processing scripts to incidents?
- A . The post-processing tag must be added to the automation
- B . Post-processing scripts must be added at the end of playbooks
- C . Post-processing scripts must be added from the Incident Type editor
- D . Post-processing scripts must be added from the Post-Process Rules editor
How would context data be filtered to receive only malicious indicator values with DBotScore?
- A . Get DBotScore.value where DBotScore.Score (Larger or equals) 4
- B . Get DBotScore.value where DBotScore.Score (equals (int)) 3
- C . Get DBotScore where DBotScore.Score (Larger than) 1
- D . Get DBotScore where DBotScore.Score (Larger or equals) 2
How is data transferred between playbook tasks?
- A . Read/Write from context data
- B . Over war room results
- C . Input from the indicator page
- D . Directly from a previous task
What are inputs and outputs in reference to a Playbook Development Lifecycle? (Choose three.)
- A . Inputs are data pieces that are present in the playbook
- B . Inputs are data pieces that are present in the task
- C . Outputs are used as incident trigger for playbook
- D . Outputs can be derived from the result of a task or command
- E . Inputs are the data fields parsed by the Classifier
Which two statements accurately describe layouts? (Choose two.)
- A . Layouts override classification and mapping
- B . New tabs can be added to the incident layout
- C . Layouts can display incident information and custom fields
- D . Layouts add or remove custom fields from an incident type
Which configuration is a valid distributed database (DB) implementation?
- A . 2 main DBs, 1 application server, 2 node servers
- B . 1 main DB, 1 application server, 3 node servers
- C . 2 application servers, 1 main DB, 1 node server
- D . 1 application server, 2 main DBs, 1 node server
Threat Intel search queries can be shared with which of the following? (Select 1)
- A . Users defined in the platform (email or username)
- B . Other organizations via the Marketplace
- C . Users outside XSOAR via email invite
- D . Roles defined in the platform
Which of these would be the most operationally efficient repository for moving XSOAR custom content from a development server to a production environment?
- A . A content repository specified in the Marketplace
- B . Remote git repository specified in the dev-prod configuration parameters
- C . The development server’s default repository
- D . Cortex XSOAR public content repository