You are evaluating the most appropriate Prevention Policy Machine Learning slider settings for your environment. In your testing phase, you configure the Detection slider as Aggressive. After running the sensor with this configuration for 1 week of testing, which Audit report should you review to determine the best Machine Learning slider settings for your organization?

• A.Prevention Policy Audit Trail
• B.Prevention Hashes Ignored
• C.Prevention Policy Debug
• D.Machine-Learning Prevention Monitoring

Comment: *

Name: *

Email: *

Verification: *

What is the most common cause of a Windows Sensor entering Reduced Functionality Mode (RFM)?

• A.Falcon console updates are pending
• B.Notifications have been disabled on that host sensor
• C.Falcon sensors installing an update
• D.Microsoft updates

Comment: *

Name: *

Email: *

Verification: *

When creating new IOCs in IOC management, which of the following fields must be configured?

• A.Hash, Platform and Action
• B.Hash, Action and Expiry Date
• C.Filename, Severity and Expiry Date
• D.Hash, Description, Filename

Comment: *

Name: *

Email: *

Verification: *

When creating a Host Group for all Workstations in an environment, what is the best method to ensure all workstation hosts are added to the group?

• A.Create a Dynamic Group and Import All Workstations
• B.Create a Static Group and Import all Workstations
• C.Create a Static Group with Type=Workstation Assignment
• D.Create a Dynamic Group with Type=Workstation Assignment

Comment: *

Name: *

Email: *

Verification: *

Which role is required to manage groups and policies in Falcon?

• A.Falcon Host Security Lead
• B.Falcon Host Administrator
• C.Falcon Host Analyst
• D.Prevention Hashes Manager

Comment: *

Name: *

Email: *

Verification: *