Question 12

Question

The causality chain in Cortex XDR helps analysts:

Accepted Answer

Identify the sequence of related events leading to an incident

DanielL · Answer

Probably B, causality chain is that visual timeline of linked events. Not for licensing or auto playbooks, just seeing how stuff unfolded. Makes more sense than D here.

Aaron · Answer

Seriously why is Palo Alto obsessed with visualization? Wouldn't D make more sense with alert handling?

Ishaan G. · Answer

Makes sense to pick D for prioritizing alerts, since analysts need to focus on what’s critical first.

MiaE · Answer

B here, not D. Causality chain really just maps out the order of related events, not alert priority or licensing stuff.

Zoe S. · Answer

I don’t think D is right here. B lines up because the causality chain just connects all those related events, so you can actually see what led up to an incident. Not totally sure but that's how I've seen it used.

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE