Palo Alto Networks System Engineer – Cortex — Question 62

Which feature of Cortex XSIAM helps analyst reduce the noise and false positives that often plague traditional SIEM systems?

Answer options

• A. Alert range indicators
• B. AI-generated correlation rules
• C. Automatic incident scoring
• D. Dynamic alarm fields

Correct answer: B

Explanation

The correct answer, B, refers to AI-generated correlation rules which intelligently analyze data and reduce false positives by improving the accuracy of alerts. The other options do not specifically address the issue of noise reduction in alerts, with features like alert range indicators and dynamic alarm fields focusing more on display rather than accuracy.