Paloalto Networks how2pass pccse Exam Lab Questions by Zidan q99 vce pdf

Page: 17 / 19

Exam Name:	Prisma Certified Cloud Security Engineer
Exam Code:	PCCSE Dumps
Vendor:	Paloalto Networks	Certification:	Cloud Security Engineer
Questions:	260 Q&A's	Shared By:	zidan

Question 68

Which two statements are true about the differences between build and run config policies? (Choose two.)

Options:

Run and Network policies belong to the configuration policy set.

Build and Audit Events policies belong to the configuration policy set.

Run policies monitor resources, and check for potential issues after these cloud resources are deployed.

Build policies enable you to check for security misconfigurations in the IaC templates and ensure that these issues do not get into production.

Run policies monitor network activities in your environment, and check for potential issues during runtime.

Discussion

Question 69

Which resource and policy type are used to calculate AWS Net Effective Permissions? (Choose two.)

Options:

Service Linked Roles

Lambda Function

Amazon Resource Names (ARNs) using Wild Cards

AWS Service Control Policies (SCPs)

Discussion

Peyton

Hey guys. Guess what? I passed my exam. Thanks a lot Cramkey, your provided information was relevant and reliable.

Coby Sep 6, 2024

Thanks for sharing your experience. I think I'll give Cramkey a try for my next exam.

Osian

Dumps are fantastic! I recently passed my certification exam using these dumps and I must say, they are 100% valid.

Azaan Aug 8, 2024

They are incredibly accurate and valid. I felt confident going into my exam because the dumps covered all the important topics and the questions were very similar to what I saw on the actual exam. The team of experts behind Cramkey Dumps make sure the information is relevant and up-to-date.

Pippa

I was so happy to see that almost all the questions on the exam were exactly what I found in their Dumps.

Anastasia Sep 21, 2024

You are right…It was amazing! The Cramkey Dumps were so comprehensive and well-organized, it made studying for the exam a breeze.

Hassan

Highly Recommended Dumps… today I passed my exam! Same questions appear. I bought Full Access.

Kasper Oct 20, 2024

Hey wonderful….so same questions , sounds good. Planning to write this week, I will go for full access today.

Question 70

A DevOps lead reviewed some system logs and notices some odd behavior that could be a data exfiltration attempt. The DevOps lead only has access to vulnerability data in Prisma Cloud Compute, so the DevOps lead passes this information to SecOps.

Which pages in Prisma Cloud Compute can the SecOps lead use to investigate the runtime aspects of this attack?

Options:

The SecOps lead should investigate the attack using Vulnerability Explorer and Runtime Radar.

The SecOps lead should use Incident Explorer and Compliance Explorer.

The SecOps lead should use the Incident Explorer page and Monitor > Events > Container Audits.

The SecOps lead should review the vulnerability scans in the CI/CD process to determine blame.

Discussion

Question 71

An S3 bucket within AWS has generated an alert by violating the Prisma Cloud Default policy “AWS S3 buckets are accessible to public”. The policy definition follows:

config where cloud.type = 'aws' AND api.name='aws-s3api-get-bucket-acl' AND json.rule="((((acl.grants[? (@.grantee=='AllUsers')] size > 0) or policyStatus.isPublic is true) and publicAccessBlockConfiguration does not exist) or ((acl.grants[?(@.grantee=='AllUsers')] size > 0) and publicAccessBlockConfiguration.ignorePublicAcis is false) or (policyStatus.isPublic is true and publicAccessBlockConfiguration.restrictPublicBuckets is false)) and websiteConfiguration does not exist"

Why did this alert get generated?

Options:

an event within the cloud account

network traffic to the S3 bucket

configuration of the S3 bucket

anomalous behaviors