Palo Alto Networks PCCP - Palo Alto Networks Certified Cybersecurity Practitioner Certification Exam
Question #6 (Topic: Demo Questions)
Which two workflows are improved by integrating SIEMs with other security solutions? (Choose two.)
Correct Answer: B, D
Explanation:
Log normalization – SIEMs standardize log formats from various sources, making it easier to analyze and correlate security events.
Log normalization – SIEMs standardize log formats from various sources, making it easier to analyze and correlate security events.
Incident response – Integration enables faster detection, investigation, and automated or guided response to security incidents by using correlated data from multiple tools.
Hardware procurement and security team training are not directly influenced by SIEM integration.
Question #7 (Topic: Demo Questions)
Which MITRE ATT & CK tactic grants increased permissions to a user account for internal servers of a corporate network?
Correct Answer: B
Explanation: