Question 1

Which pane in the User Risk View will identify the country from which a user regularly logs in, based on the past few weeks of data?

Options :

A : Login Attempts

B : Common Locations

C : Actual Activity

D : Latest Authentication Attempts

Answer: B

Question 2

Which type of analytics will trigger the alert on the image shown?

Options :

A : Contextual

B : Baseline

C : Behavioral

D : Anomaly

Answer: D

Question 3

What information is provided in the timeline view of Cortex XSIAM?

Options :

A : Detailed overview of behavior or activity that triggered an Analytics Alert, Analytics BIOC alert or correlation rule

B : Graphic representation of an event Causality Instance (CI) with additional capabilities to enable further analysis

C : Tab within an incident where analysts can collaborate and initiate further actions and automations

D : Sequence of events, alerts, rules and other actions involved over the lifespan of an incident

Answer: D

Question 4

What information is provided in the timeline view of Cortex XSIAM?

Options :

A : Detailed overview of behavior or activity that triggered an Analytics Alert, Analytics BIOC alert or correlation rule

B : Graphic representation of an event Causality Instance (CI) with additional capabilities to enable further analysis

C : Tab within an incident where analysts can collaborate and initiate further actions and automations

D : Sequence of events, alerts, rules and other actions involved over the lifespan of an incident

Answer: D

Question 5

Which configuration will ensure any alert involving a specific critical asset will always receive a score of 100?

Options :

A : An asset as critical in Asset Inventory

B : SmartScore to apply the specific score to the critical asset

C : A user scoring rule for the critical asset

D : A risk scoring policy for the critical asset

Answer: D

Free XSIAM-Analyst Mock Exam – Practice Online Confidently