최신 PCCSE 무료덤프 - Palo Alto Networks Prisma Certified Cloud Security Engineer

문제1

A DevOps lead reviewed some system logs and notices some odd behavior that could be a data exfiltration attempt. The DevOps lead only has access to vulnerability data in Prisma Cloud Compute, so the DevOps lead passes this information to SecOps.
Which pages in Prisma Cloud Compute can the SecOps lead use to investigate the runtime aspects of this attack?

A. The SecOps lead should use Incident Explorer and Compliance Explorer.

B. The SecOps lead should use the Incident Explorer page and Monitor > Events > Container Audits.

C. The SecOps lead should investigate the attack using Vulnerability Explorer and Runtime Radar.

D. The SecOps lead should review the vulnerability scans in the CI/CD process to determine blame.

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제2

What is the default namespace created by Defender DaemonSet during deployment?

A. Defender

B. Redlock

C. Twistlock

D. Default

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제3

Which command correctly outputs scan results to stdout in tabular format and writes scan results to a JSON file while still sending the results to Console?

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제4

A customer has Prisma Cloud Enterprise and host Defenders deployed.
What are two options that allow an administrator to upgrade Defenders? (Choose two.)

A. auto deploy the Lambda Defender.

B. click the update button in the web-interface.

C. generate a new DaemonSet file.

D. with auto-upgrade, the host Defender will auto-upgrade.

정답: C,D

설명: (DumpTOP 회원만 볼 수 있음)

문제5

During an initial deployment of Prisma Cloud Compute, the customer sees vulnerabilities in their environment.
Which statement correctly describes the default vulnerability policy?

A. It alerts on all vulnerabilities, regardless of severity.

B. It alerts on any container with more than three critical vulnerabilities.

C. It blocks containers after 30 days if they contain a critical vulnerability.

D. It blocks all containers that contain a vulnerability.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제6

In Azure, what permissions need to be added to Management Groups to allow Prisma Cloud to calculate net effective permissions?

A. Microsoft.Management/managementGroups/descendants/calculate

B. PaloAltoNetworks.PrismaCloud/managementGroups/descendants/read

C. PaloAltoNetworks.PrismaCloud/managementGroups/

D. Microsoft.Management/managementGroups/descendants/read

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제7

An organization wants to be notified immediately to any "High Severity" alerts for the account group "Clinical Trials" via Slack.
Which option shows the steps the organization can use to achieve this goal?

A. 1. Under the "Select Policies" tab, filter on severity and select "High"
2. Under the Set Alert Notification tab, choose Slack and populate the channel
3. Set Frequency to "As it Happens"
4. Configure Slack Integration
5. Create an Alert rule

B. 1. Configure Slack Integration
2. Create an alert rule
3. Under the "Select Policies" tab, filter on severity and select "High"
4. Under the Set Alert Notification tab, choose Slack and populate the channel
5. Set Frequency to "As it Happens"

C. 1. Create an alert rule and select "Clinical Trials" as the account group
2. Under the "Select Policies" tab, filter on severity and select "High"
3. Under the Set Alert Notification tab, choose Slack and populate the channel
4. Set Frequency to "As it Happens"
5. Set up the Slack Integration to complete the configuration

D. 1. Configure Slack Integration
2. Create an alert rule and select "Clinical Trials" as the account group
3. Under the "Select Policies" tab, filter on severity and select "High"
4. Under the Set Alert Notification tab, choose Slack and populate the channel
5. Set Frequency to "As it Happens"

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제8

While writing a custom RQL with array objects in the investigate page, which type of auto-suggestion a user can leverage?

A. Auto-sugestion for array objects that are useful for comparing between arrays

B. Auto-suggestion for array objects that are useful for categorization of resource parameters

C. Auto-suggestion is not available for array objects

D. Auto-suggestion for array objects that are useful for comparing between array elements

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제9

Which three AWS policy types and identities are used to calculate the net effective permissions? (Choose three).

정답: A,D,E

설명: (DumpTOP 회원만 볼 수 있음)

문제10

Which three options are selectable in a CI policy for image scanning with Jenkins or twistcli? (Choose three.)

정답: A,B,E

설명: (DumpTOP 회원만 볼 수 있음)

문제11

Based on the following information, which RQL query will satisfy the requirement to identify VM hosts deployed to organization public cloud environments exposed to network traffic from the internet and affected by Text4Shell RCE (CVE-2022-42889) vulnerability?
* Network flow logs from all virtual private cloud (VPC) subnets are ingested to the Prisma Cloud Enterprise Edition tenant.
* All virtual machines (VMs) have Prisma Cloud Defender deployed.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제12

On which cloud service providers can you receive new API release information for Prisma Cloud?

A. AWS, Azure, GCP, Oracle, IBM

B. AWS, Azure, GCP, IBM

C. AWS, Azure, GCP, Oracle, Alibaba

D. AWS, Azure, GCP, IBM, Alibaba

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제13

Which container image scan is constructed correctly?

A. twistcli images scan --docker-address https://us-west1.cloud.twistlock.com/us-3-123456789 myimage/ latest

B. twistcli images scan --address https://us-west1.cloud.twistlock.com/us-3-123456789 --container myimage/ latest

C. twistcli images scan --address https://us-west1.cloud.twistlock.com/us-3-123456789 myimage/latest

D. twistcli images scan --address https://us-west1.cloud.twistlock.com/us-3-123456789 --container myimage/ latest --details

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

최신 PCCSE 무료덤프 - Palo Alto Networks Prisma Certified Cloud Security Engineer

우리와 연락하기

유용한 링크

최신 업데이트