Planning: Defining how incidents will be managed.
Incident Ingestion: Gathering data from various sources.
Mapping and Classification: Mapping incoming data to incident fields and classifying the incident type.
Pre-processing: Applying pre-processing rules to determine how the incident should be handled.
Incident Creation: Officially creating the incident in the system.
Playbook runs: Executing the automated response playbooks.
Post-processing: Final steps taken before closing the incident.
Sorry, it's A - Here is why:
Stage 1 - Event Ingestion
Stage Two: Incident Object Creation
Cortex XSOAR uses the event data fetched by an integration to create an incident object and populates it with raw event data.
I think it is D - The pre-processing rule defines what to do if incident is of type X, therefore there has to be an incident for this to occur.
Planning > Incident Ingestion > Mapping and Classification > Pre-processing > Incident Creation > Playbook runs > Post-processing
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.PCSAE Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Sarppp
Highly Voted 1 year, 8 months agoJai_ke
Most Recent 8 months, 1 week agopiipo
1 year, 1 month agofranko_72
1 year, 9 months agofranko_72
1 year, 9 months ago