Palo Alto Networks System Engineer Professional - Prisma Cloud v1.0

Page:    1 / 5   
Exam contains 65 questions
Expand All

Which statement reflects the default vulnerability management policy?

  • A. Policy rule order has little impact on optimization.
  • B. Prisma Cloud scans images in all containers immediately upon policy activation.
  • C. The default vulnerability policy rule has an alert threshold to critical.
  • D. Prisma Cloud ships all vulnerability policy with a default alert for containers, hosts, and serverless functions.


Answer : C

What is the Palo Alto Networks default Prisma Cloud setting for Alert Disposition to reduce the number of false positives?

  • A. Conservative
  • B. Moderate
  • C. High
  • D. Aggressive


Answer : A

Which two template formats are supported by the Prisma Cloud infrastructure as code (IaC) scan service? (Choose two.)

  • A. ARMB. XMLC. YAML
  • D. JSON


Answer : AC

Which two resources provide operational insight within the Prisma Cloud Asset Inventory? (Choose two.)

  • A. Cortex Data Lake
  • B. Cloud Storage buckets
  • C. Prisma Access Gateways
  • D. Compute Engine instance


Answer : AB

What does Prisma Cloud execute to change public cloud infrastructure when autoremediation is enabled?

  • A. local scripts to public cloud APIs
  • B. remote function calls to host agents
  • C. third-party integration tools
  • D. public cloud CLI commands


Answer : A

Which pillar of the Prisma Cloud platform can secure outbound traffic, stop lateral attack movement, and block inbound threats?

  • A. Cloud Workload Protection (CWP)
  • B. Cloud Code Security
  • C. Cloud Network Security
  • D. Cloud Identity Security


Answer : C

Which RQL query returns a list of all Azure virtual machines that are not currently running?

  • A. config from cloud.resource where api.name = 'azure-vm-list' AND json.rule = powerState contains "running"
  • B. config from cloud.resource where api.name = 'azure-vm-list' AND json.rule = powerState = "running"
  • C. config from cloud.resource where api.name = 'azure-vm-list* AND json.rule = powerState = "off"
  • D. config from cloud.resource where api.name = 'azure-vm-list' AND json.rule = powerState does not contain "running"


Answer : D

Which statement applies to vulnerability management policies?

  • A. Host and serverless rules support blocking, whereas container rules do not.
  • B. Rules explain the necessary actions when vulnerabilities are found in the resources of a customer environment.
  • C. Policies for containers, hosts, and serverless functions are not separate.
  • D. Rules are evaluated in an undefined order.


Answer : B

What happens in Prisma Cloud after Training Model Threshold or Alert Disposition is changed?

  • A. Changes will take effect after a new learning phase of 30 days.
  • B. System will perform a reboot, deleting all past alerts.
  • C. Existing alerts and new alerts are regenerated based on the new setting.
  • D. New alerts are generated based on the new setting.


Answer : C

What are two valid image identifiers to designate trust? (Choose two.)

  • A. repo
  • B. trusted publisher
  • C. registry
  • D. base layer


Answer : BC

All Amazon Regional Database Service (RDS)-deployed resources and the regions in which they are deployed can be identified by Prisma Cloud using which two methods? (Choose two.)

  • A. Configure an Inventory report from the "Alerts" tab.
  • B. Write an RQL query from the "Investigate" tab.
  • C. Open the Asset dashboard, filter on Amazon Web Services, and click "Amazon RDS" resources.
  • D. Generate a compliance report from the Compliance dashboard.


Answer : BC

Which subcommand invokes the scan for images built with Jenkins in an OpenShift environment?

  • A. > twistcli project scan
  • B. > twistcli scan projects
  • C. > twistcli hosts scan
  • D. > twistcli scan hosts


Answer : A

Which Resource Query Language (RQL) query returns a list of all TERMINATED Google Compute Engine (GCE) instances?

  • A. config from cloud.resource where api.name = 'gcloud-compute-instances-list' and json.rule = is TERMINATED
  • B. config from cloud.resource where api.name = 'gcloud-compute-instances-list' = TERMINATED
  • C. config from cloud.resource where api.name = 'gcloud-compute-instances-list* and json.rule = status TERMINATED
  • D. config from cloud.resource where api.name = 'gcloud-compute-instances-list' and json.rule =
    contains TERMINATED status


Answer : A

The following error is received when performing a manual twistcli scan on an image: sudo ./twistcli images scan -u bca208cf-26fa-43c6-ac6S-edbl840f8a5S -p 69s+DUqceuxndIF52mo4JDHlpLA-proxy:1.0
What is missing from the command?

  • A. registry path for image name
  • B. password
  • C. console address
  • D. username


Answer : A

Which Resource Query Language (RQL) query returns a list of all Azure SQL Databases that have transparent data encryption turned on?

  • A. config from cloud.resource where api.name = 'azure-sql-db-list' and json.rule = transparentDataEncryption is false
  • B. config from cloud.resource where api.name = 'azure-sql-db-list' and json.rule transparentDataEncryption is true
  • C. config from cloud.resource where api.name = 'azure-sql-db-list' and json.rule transparentDataEncryption is on
  • D. config from cloud.resource where api.name = 'azure-sql-db-list' and json.rule = transparentDataEncryption = true


Answer : B

Page:    1 / 5   
Exam contains 65 questions
Expand All

Talk to us!

Have any questions or issues ? Please dont hesitate to contact us

[email protected]

Certlibrary.com is owned by MBS Tech Limited: Room 1905 Nam Wo Hong Building, 148 Wing Lok Street, Sheung Wan, Hong Kong. Company registration number: 2310926
Certlibrary doesn't offer Real Microsoft Exam Questions. Certlibrary Materials do not contain actual questions and answers from Cisco's Certification Exams.
CFA Institute does not endorse, promote or warrant the accuracy or quality of Certlibrary. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Terms & Conditions | Privacy Policy