Cortex XDR can schedule recurring scans of endpoints for malware. Identify two methods for initiating an on-demand malware scan?

Initiating an on-demand malware scan in Cortex XDR can be accomplished in several effective ways, and the choice indicating the Action Center is indeed one of the recognized methods. The Action Center within the Response section serves as a hub where security teams can monitor alerts and manage responses to security incidents, including manually triggering scans. This provides a user-friendly interface where analysts can ensure endpoints are checked for malware when deemed necessary, without waiting for scheduled scans.

In addition to using the Action Center, another valid method for initiating on-demand scans is through the local console. This allows for direct interaction with the endpoint, enabling users to execute scans based on real-time requirements—such as when an immediate threat is suspected or after an alert has been raised.

While telecommunication protocols like Telnet may be useful for various administrative tasks, they are not designed for initiating malware scans within Cortex XDR. Similarly, the Endpoint Management section focuses more on overseeing the configurations and statuses of endpoints rather than executing on-demand actions. Thus, the methods chosen for initiating scans reflect the appropriate operational capabilities within Cortex XDR designed for security management and incident response.