Question: 1/50
A SOC analyst wants to quickly understand the scope of an incident by seeing all related alerts, artifacts, and timelines in one place within Cortex. Which Cortex capability best supports this need?
Cortex XDR incident view (incidents and causality timeline)
Cortex XSOAR playbook editor
Cortex Data Lake log forwarding profiles
Prisma Access remote network onboarding