[Nov 29, 2023] Step by Step Guide to Prepare for PCCSE Exam BrainDumps [Q91-Q110]

QUESTION 91
Which two roles have access to view the Prisma Cloud policies? (Choose two.)

QUESTION 92
Which “kind” of Kubernetes object is configured to ensure that Defender is acting as the admission controller?

QUESTION 93
Which “kind” of Kubernetes object that is configured to ensure that Defender is acting as the admission controller?

QUESTION 94
A security team notices a number of anomalies under Monitor > Events The incident response team works with the developers to determine that these anomalies are false positives.
What will be the effect if the security team chooses to Relearn on this image?

QUESTION 95
How are the following categorized?
* Backdoor account access
* Hijacked processes
* Lateral movement
* Port scanning

QUESTION 96
The development team is building pods to host a web front end, and they want to protect these pods with an application firewall.
Which type of policy should be created to protect this pod from Layer7 attacks?

QUESTION 97
The development team wants to fail CI jobs where a specific CVE is contained within the image. How should the development team configure the pipeline or policy to produce this outcome?

QUESTION 98
A customer has a development environment with 50 connected Defenders A maintenance window is set for Monday to upgrade 30 stand-alone Defenders in the development environment, but there is no maintenance window available until Sunday to upgrade the remaining 20 standalone Defenders .
Which recommended action manages this situation?

QUESTION 99
The Unusual protocol activity (Internal) network anomaly is generating too many alerts An administrator has been asked to tune it to the option that will generate the least number of events without disabling it entirely.
Which strategy should the administrator use to achieve this goal?

QUESTION 100
Which method should be used to authenticate to Prisma Cloud Enterprise programmatically?

QUESTION 101
Which step is included when configuring Kubernetes to use Prisma Cloud Compute as an admission controller?

QUESTION 102
Which two required request headers interface with Prisma Cloud API? (Choose two.)

QUESTION 103
Which statement accurately characterizes SSO Integration on Prisma Cloud?

QUESTION 104
Which alerts are fixed by enablement of automated remediation?

QUESTION 105
A customer wants to harden its environment from misconfiguration
Prisma Cloud Compute Compliance enforcement for hosts covers which three options? (Choose three.)

QUESTION 106
A customer has a large environment that needs to upgrade Console without upgrading all Defenders at one time.
What are two prerequisites prior to performing a rolling upgrade of Defenders? (Choose two.)

QUESTION 107
A customer wants to scan a serverless function as part of a build process.
Which twistcli command can be used to scan serverless functions?

QUESTION 108
A customer has a requirement to scan serverless functions for vulnerabilities.
What is the correct option to configure scanning?

QUESTION 109
A customer is deploying Defenders to a Fargate environment. It wants to understand the vulnerabilities in the image it is deploying.
How should the customer automate vulnerability scanning for images deployed to Fargate?

QUESTION 110
A S3 bucket within AWS has generated an alert by violating the Prisma Cloud Default policy “AWS S3 buckets are accessible to public” The policy definition follows:
config where cloud type = ‘aws’ AND api name=’aws-s3api-get-bucket-acr AND json.rule=”((((acl grants{?(@ grantee=’AllUsers’)] size > 0) or policyStatusisPubiic is true) and publicAccessBlockConfiguration does not exist) or ((ad.grantsp(@ grantee==’AII Users’)] size > 0) and publicAccessBlockConfiguration ignorePubhcAds is false) or (policyStatus isPublic is true and publicAccessBlockConfiguration.restrictPublicBuckets is false)) and websiteConfiguration does not exist” Why did this alert get generated?