[Oct-2023] Free PCCSE Exam Questions PCCSE Actual Free Exam Questions [Q94-Q119]

[Oct-2023] Free PCCSE Exam Questions PCCSE Actual Free Exam Questions

Verified PCCSE dumps and 200 unique questions

To be eligible to take the PCCSE exam, candidates must have at least one year of experience in cloud security and hold a current certification in either the Palo Alto Networks Certified Network Security Engineer (PCNSE) or the Palo Alto Networks Certified Prisma Access Security Engineer (PCSSE) exam. The PCCSE exam is a proctored exam that can be taken online from anywhere in the world. PCCSE exam consists of 60 multiple-choice questions and must be completed within 120 minutes.

 

NEW QUESTION # 94
Which three actions are available for the container image scanning compliance rule? (Choose three.)

• A. Alert
• B. Ignore
• C. Allow
• D. Snooze
• E. Block

Answer: C,D,E

NEW QUESTION # 95
Put the steps involved to configure and scan using the IntelliJ plugin in the correct order.

Answer:

Explanation:

NEW QUESTION # 96
Which two statements are true about the differences between build and run config policies? (Choose two.)

• A. Build policies enable you to check for security misconfigurations in the IaC templates and ensure that these issues do not get into production.
• B. Build and Audit Events policies belong to the configuration policy set.
• C. Run policies monitor network activities in your environment, and check for potential issues during runtime.
• D. Run policies monitor resources, and check for potential issues after these cloud resources are deployed.
• E. Run and Network policies belong to the configuration policy set.

Answer: B,C

NEW QUESTION # 97
What is the function of the external ID when onboarding a new Amazon Web Services (AWS) account in Prisma Cloud?

• A. It is the default name of the PrismaCloudApp stack.
• B. It is a UUID that establishes a trust relationship between the Prisma Cloud account and the AWS account in order to extract data.
• C. It is the resource name for the Prisma Cloud Role.
• D. It is a unique identifier needed only when Monitor & Protect mode is selected.

Answer: B

NEW QUESTION # 98
An administrator needs to write a script that automatically deactivates access keys that have not been used for
30 days.
In which order should the API calls be used to accomplish this task? (Drag the steps into the correct order from the first step to the last.) Select and Place:

Answer:

Explanation:

Explanation
A picture containing graphical user interface Description automatically generated

NEW QUESTION # 99
You are an existing customer of Prisma Cloud Enterprise. You want to onboard a public cloud account and immediately see all of the alerts associated with this account based off ALL of your tenant's existing enabled policies. There is no requirement to send alerts from this account to a downstream application at this time.
Which options shows the steps required during the alert rule creation process to achieve this objective?

• A. Ensure the public cloud account is assigned to an account group
  Assign the confirmed account group to alert rule
  Select "select all policies" checkbox as part of the alert rule
  Add alert notifications
  Confirm the alert rule
• B. Ensure the public cloud account is assigned to an account group
  Assign the confirmed account group to alert rule
  Select one or more policies as part of the alert rule
  Add alert notifications
  Confirm the alert rule
• C. Ensure the public cloud account is assigned to an account group
  Assign the confirmed account group to alert rule
  Select one or more policies checkbox as part of the alert rule
  Confirm the alert rule
• D. Ensure the public cloud account is assigned to an account group
  Assign the confirmed account group to alert rule
  Select "select all policies" checkbox as part of the alert rule
  Confirm the alert rule

Answer: B

NEW QUESTION # 100
Match the correct scanning mode for each given operation.
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)

Answer:

Explanation:

NEW QUESTION # 101
A customer does not want alerts to be generated from network traffic that originates from trusted internal networks.
Which setting should you use to meet this customer's request?

• A. Anomaly Trusted List
• B. Enterprise Alert Disposition
• C. Trusted Login IP Addresses
• D. Trusted Alert IP Addresses

Answer: D

Explanation:
Section: (none)
Explanation

NEW QUESTION # 102
What is the order of steps to create a custom network policy?
(Drag the steps into the correct order of occurrence, from the first step to the last.)

Answer:

Explanation:

Reference:
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-policies/create-a- policy.html

NEW QUESTION # 103
Which three types of classifications are available in the Data Security module? (Choose three.)

• A. Personally identifiable information
• B. Malicious IP
• C. Compliance standard
• D. Financial information
• E. Malware

Answer: A,D,E

Explanation:
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-data-security.html

NEW QUESTION # 104
Which role must be assigned to DevOps users who need access to deploy Container and Host Defenders in Compute?

• A. System Admin
• B. Developer
• C. Cloud Provisioning Admin
• D. Build and Deploy Security

Answer: D

NEW QUESTION # 105
An administrator has added a Cloud account on Prisma Cloud and then deleted it.
What will happen if the deleted account is added back on Prisma Cloud within a 24-hour period?

• A. Existing alerts will be displayed again.
• B. Existing alerts will be marked as resolved.
• C. No alerts will be displayed.
• D. New alerts will be generated.

Answer: A

NEW QUESTION # 106
Which method should be used to authenticate to Prisma Cloud Enterprise programmatically?

• A. access key
• B. basic authentication
• C. SAML
• D. single sign-on

Answer: A

Explanation:
Explanation
Prisma Cloud requires an API access key to enable programmatic access to the REST API. By default, only the System Admin has API access and can enable API access for other administrators. To generate an access key, see Create and Manage Access Keys. After you obtain an access key, you can submit it in a REST API request to generate a JSON Web Token (JWT). The JWT is then used to authenticate all subsequent REST API requests on Prisma Cloud.
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/get-started-with-prisma-cloud/acce

NEW QUESTION # 107
A customer finds that an open alert from the previous day has been resolved. No auto-remediation was configured.
Which two reasons explain this change in alert status? (Choose two.)

• A. policy was changed.
• B. user manually changed the alert status.
• C. resource was deleted.
• D. alert was sent to an external integration.

Answer: B,C

NEW QUESTION # 108
Given this information:
* The Console is located at https//prisma-console mydomain local
* The username is ciuser
* The password is password123
* The Image to scan is myimage latest
Which twistcli command should be used to scan a Container for vulnerabilities and display the details about each vulnerability?

• A. twistcli images scan -address https //prisma-console mydomain local -u ciuser -p password123 -details myimage latest
• B. twistcli images scan -console-address prisma-console mydomain local -u ciuser -p password!23
  -vulnerability-details myimage.latest
• C. twistcli images scan -address prisma-console mydomain local -u ciuser -p password123
  -vulnerability-details myimage latest
• D. twistcli images scan -console-address https //prisma-console mydomain local -u ciuser -p password123 -details myimage latest

Answer: B

NEW QUESTION # 109
Which intensity setting for anomaly alerts is used for the measurement of 100 events over 30 days?

• A. High
• B. Medium
• C. Low
• D. Very High

Answer: B

NEW QUESTION # 110
An administrator needs to detect and alert on any activities performed by a root account.
Which policy type should be used?

• A. audit event
• B. config-build
• C. config-run
• D. network

Answer: A

Explanation:
To detect and alert on activities performed by a root account, an audit event policy should be used. An audit event policy is a type of policy that can be used to detect suspicious activities or events that may be related to security threats. This type of policy will allow the administrator to monitor and alert on any activities performed by a root account.
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-policies/prisma-cloud-threat-detection

NEW QUESTION # 111
Order the steps involved in onboarding an AWS Account for use with Data Security feature.

Answer:

Explanation:

NEW QUESTION # 112
A security team notices a number of anomalies under Monitor > Events. The incident response team works with the developers to determine that these anomalies are false positives.
What will be the effect if the security team chooses to Relearn on this image?

• A. The model is retained, and any new behavior observed during the new learning period will be added to the existing model.
• B. The anomalies detected will automatically be added to the model.
• C. The model is deleted, and Defender will relearn for 24 hours.
• D. The model is deleted and returns to the initial learning state.

Answer: B

NEW QUESTION # 113
Which component(s), if any, will Palo Alto Networks host and run when a customer purchases Prisma Cloud Enterprise Edition?

• A. Console
• B. twistcli
• C. Defenders
• D. Jenkins

Answer: A

NEW QUESTION # 114
A customer has configured the JIT, and the user created by the process is trying to log in to the Prisma Cloud console. The user encounters the following error message:

What is the reason for the error message?

• A. The attribute name is not set correctly in JIT settings.
• B. The user entered an incorrect password
• C. The user does not exist.
• D. The role is not assigned for the user.

Answer: A

NEW QUESTION # 115
What are two alarm types that are registered after alarms are enabled? (Choose two.)

• A. Compute resources
• B. Onboarded Cloud Accounts status
• C. Resource status
• D. External integrations status

Answer: C,D

NEW QUESTION # 116
What is the maximum number of access keys a user can generate in Prisma Cloud with a System Admin role?

• A. 0
• B. 1
• C. 2
• D. 3

Answer: D

NEW QUESTION # 117
An administrator needs to write a script that automatically deactivates access keys that have not been used for 30 days.
In which order should the API calls be used to accomplish this task? (Drag the steps into the correct order from the first step to the last.) Select and Place:

Answer:

Explanation:

NEW QUESTION # 118
An administrator has access to a Prisma Cloud Enterprise
What are the steps to deploy a single container Defender on an ec2 node?

• A. Generate DaemonSet file and apply DaemonSet to the twistlock namespace.
• B. Execute the curl | bash script on the ec2 node.
• C. Configure the cloud credential in the console and allow cloud discovery to auto-protect the ec2 node
• D. Pull the Defender image to the ec2 node, copy and execute the curl | bash script, and start the Defender to ensure it is running.

Answer: A

NEW QUESTION # 119
......

The PCCSE exam is a certification program that is designed to validate the skills and knowledge of cloud security professionals. PCCSE exam covers a range of topics that are critical to securing cloud environments, including cloud architecture, network security, identity and access management, data protection, and compliance. By passing the PCCSE exam, individuals can demonstrate their expertise in cloud security and earn a certification that is recognized by the industry.

 

Latest 100% Passing Guarantee - Brilliant PCCSE Exam Questions PDF: https://testking.practicedump.com/PCCSE-exam-questions.html