PrepAway - Latest Free Exam Questions & Answers

Author: admin

An analyst needs to create a new custom dashboard to view dashboard items that meet a particular requirement.

An analyst needs to create a new custom dashboard to view dashboard items that meet a particular requirement. What are the main steps in the process? A. Select New Dashboard and enter unique name, description, add items and save. B. Select New Dashboard and copy name, add description, items and save. C. Request the administrator […]

An analyst is encountering a large number of false positive results.

An analyst is encountering a large number of false positive results. Legitimate internal network traffic contains valid flows and events which are making it difficult to identify true security incidents. What can the analyst do to reduce these false positive indicators? A. Create X-Force rules to detect false positive events. B. Create an anomaly rule […]

When an analyst sees the system notification “The appliance exceeded the EPS or FPM allocation within the la

When an analyst sees the system notification “The appliance exceeded the EPS or FPM allocation within the last hour”, how does the analyst resolve this issue? (Choose two.) A. Delete the volume of events and flows received in the last hour. B. Adjust the license pool allocations to increase the EPS and FPM capacity for […]

Why would an analyst update host definition building blocks in QRadar?

Why would an analyst update host definition building blocks in QRadar? A. To reduce false positives. B. To narrow a search. C. To stop receiving events from the host. D. To close an Offense Explanation: Building blocks to reduce the number of offenses that are generated by high volume traffic servers. Reference: https://www.ibm.com/docs/en/qsip/7.4?topic=phase-qradar-building-blocks


Page 4 of 69« First...23456...102030...Last »