PSE-PrismaCloud Sample Questions Answers

Questions 4

Which cloud provider supports iLB-as-next-hop?

Options:

Microsoft Azure

Alibaba Cloud

Oracle Cloud

Amazon Web Services

Buy Now

Questions 5

Which RQL string monitors all traffic from the Internet and Suspicious IPs destined for your Amazon Web Services databases''

Options:

network where source.publicnetwork IN ('Suspicious IPs') and dest.resource IN (resource where role IN ('AWS RDS', 'Database'))

network where source.publicnetwork IN ('Suspicious IPs', 'Internet IPs') and dest.resource IN (resource where role IN ('LDAP'))

network where dest.resource IN (resource where role = 'Database'}

network where source.publicnetwork IN ('Suspicious IPs', 'Internet IPs') and dest resource IN (resource where role IN ('AWS RDS'. 'Database'))

Buy Now

Questions 6

The Microsoft Azure virtual network gateway supports which two site-to-site connectivity options? (Choose two.)

Options:

Direct Connect

Fast Connect

IPsecVPN

ExpressRoute

Buy Now

Questions 7

Which statement reflects the default vulnerability management policy?

Options:

Policy rule order has little impact on optimization.

Prisma Cloud scans images in all containers immediately upon policy activation.

The default vulnerability policy rule has an alert threshold to critical.

Prisma Cloud ships all vulnerability policy with a default alert for containers, hosts, and serverless functions.

Buy Now

Questions 8

An Azure VNet has the IP network 10.0.0.0/16 with two subnets, 10.0.1.0/24 (used for web servers) and 10.0.2.0/24 (used for database servers). Which is a valid IP address to manage the VM-Series NGFW?

Options:

10.0.1.254

10.0.2.1

10.0.3.255

10.0.3.1

Buy Now

Questions 9

Which framework in Prisma Public Cloud can be used to provide general best practices when no specific legal requirements or regulatory standards need to be met?

Options:

HIPAA

CIS Benchmark

Payment Card Industry DSS V3

GDPR

Buy Now

Questions 10

Which Google Cloud Platform project shares its VPC networks with other projects?

Options:

Service project

Host project

Admin project

Subscribing project

Buy Now

Questions 11

A Prisma Cloud Administrator has been asked to create a custom policy which notifies the InfoSec team each time a configuration mange is made to a Security group.

Which type of Resource Query Language (RQL) query would be used in this policy?

Options:

audit from

network from

event from

config from

Buy Now

Questions 12

Where can rules be configured and viewed to configure trusted images?

Options:

Monitor > Compliance > Trusted Images

Monitor > Compliance > Images

Defend > Compliance > Trusted Images

Defend > Compliance > Images

Buy Now

Questions 13

Which statement applies to vulnerability management policies?

Options:

Host and serverless rules support blocking, whereas container rules do not.

Rules explain the necessary actions when vulnerabilities are found in the resources of a customer environment.

Policies for containers, hosts, and serverless functions are not separate.

Rules are evaluated in an undefined order.

Buy Now

Questions 14

Based on the diagram, prioritize the order in which the Virtual Gateway evaluates the best route based on the deterministic B6P Path selection process.

Options:

Buy Now

Questions 15

How does Prisma Cloud Enterprise autoremediate unwanted violations to public cloud infrastructure?

Options:

It inspects the application program interface (API) call made to public cloud and blocks the change if a policy violation is found.

It makes changes after a policy violation has been identified in monitoring.

It locks all changes to public cloud infrastructure and stops any configuration changes without prior approval.

It uses machine learning (ML) to identify unusual changes to infrastructure.

Buy Now

Questions 16

What are two valid image identifiers to designate trust? (Choose two.)

Options:

repo

trusted publisher

registry

base layer

Buy Now

Questions 17

Which two types of Resource Query Language (RQL) queries can be used to create policies? (Choose two.)

Options:

hose from

network from

system from

event from

Buy Now

Questions 18

An image containing medium vulnerabilities that do not have available fixes is being deployed into the sock-shop namespace. Prisma Cloud has been configured for vulnerability management within the organization's continuous integration (CI) tool and registry.

What will occur during the attempt to deploy this image from the CI tool into the sock-shop namespace?

Options:

The image will pass the CI policy, but will be blocked by the deployed policy; therefore, it will not be deployed.

The CI policy will fail the build; therefore, the image will not be deployed.

The image will be deployed successfully, and all vulnerabilities will be reported.

The image will be deployed successfully, but no vulnerabilities will be reported.

Buy Now

Questions 19

Which Amazon Web Services security service can provide host vulnerability information to Prisma Public Cloud?

Options:

Shield

Inspector

GuardDuty

Amazon Web Services WAF

Buy Now

Questions 20

How can you modify a range of dates default policy in Prisma Public Cloud?

Options:

Override the value and commit the configuration.

Clone the existing policy and change the value.

Manually create the RQL statement.

Click the Gear icon next to the policy name to open the Edit Policy dialog

Buy Now

Questions 21

What are three examples of outbound traffic flow? (Choose three.)

Options:

issue yum update command on an instance inside Amazon Web Services

Microsoft Windows inside Azure requesting a security patch

web server inside Amazon Web Services receiving web requests from internet

issue apt-get install command on an instance inside Amazon Web Services

outgoing Prisma Public Cloud API calls

Buy Now

Questions 22

What is the Palo Alto Networks recommended setting for the Prisma Cloud Training Model Threshold?

Options:

Low

Thorough

High

Baseline

Buy Now

Questions 23

Under which operating systems (OSs) is twistcli supported?

Options:

Linux, macOS, and Windows

Windows only

Linux and Windows

Linux, macOS, PAN-OS, and Windows

Buy Now

Questions 24

Which three anomaly policies are predefined in Prisma Public Cloud? (Choose three.)

Options:

Excessive login failures

Unusual user activity

Denial-of-service activity

Account hijacking attempts

Suspicious file activity

Buy Now

Questions 25

Which RQL query should be used to quickly identify any events related to an organization's Google Cloud Platform Big Query database the last 24 hours?

Options:

event from cloud.audit_logs where cloud.type = 'gcp' AND cloud.service = 'Google Bigtable Instance'

event from cloud.audit_logs where cloud.type = 'gcp' AND cloud.service = 'cloudsql.googleapis.com'

event from cloud.audit_logs where cloud.type = 'gcp' AND cloud.service = 'bigquery.googleapis.com'

event from cloud.audit_logs where cloud.type = 'gcp' AND cloud.service = 'dataproc.googleapis.com'

Buy Now

Questions 26

Which regulatory framework in Prisma Public Cloud measures compliance with EU data privacy regulations in Amazon Web Services workloads?

Options:

GDPR

EU Data Protection Directive 95/46/EC

ISO 27001

Payment Card Industry 3.0

Buy Now

Questions 27

A customer has just launched a Palo Alto Networks VM-Series NGFW into an Amazon Web Services VPC to protect a cloud hosted application. They are experiencing unpredictable results and have identified that the interfaces on the firewall are in the incorrect order

Which PAN-OS CLI command resolves this issue?

Options:

set system setting mgmt-interface-swap enable yes

set mgmt-interface settings swap yes

set mgmt-interface swap yes

set system setting mgmt-interface swap yes

Buy Now

Questions 28

Prisma Public Cloud enables compliance monitoring and reporting by mapping which configurations to compliance standards?

Options:

RQL queries

alert rules

notification templates

policies

Buy Now

Questions 29

Which two data sources are ingested by Prisma Cloud? (Choose two.)

Options:

network flow logs

list of all database instances' tables

metadata about compute resources' configuration

Cortex Data Lake

Buy Now

Questions 30

Which Resource Query Language (RQL) query returns a list of all Azure SQL Databases that have transparent data encryption turned in?

Options:

config from cloud.resource where api.name = 'gcloud-compute-instances-list' and json.rule = is TERMINATED

config from cloud.resource where api.name = 'gcloud-compute-instances-list' = TERMINATED

config from cloud.resource where api.name = 'gcloud-compute-instances-list* and json.rule == status TERMINATED

config from cloud.resource where api.name = 'gcloud-compute-instances-list' and json.rule = status contains TERMINATED

Buy Now

Questions 31

What are the asset severity levels within Prisma Cloud asset inventory?

Options:

Low, Medium, and High

Low, Medium, High, and Critical

Informational, Low, Medium, and High

Low, Medium, High, Severe, and Critical

Buy Now

Questions 32

Match the logging service with its cloud provider.

Options:

Buy Now

Questions 33

What configuration on AWS is required in order for VM-Series to forward traffic between its network interfaces?

Options:

Both Source and Destination Checks are disabled

Both Source and Destination Checks are enabled

Source Check is disabled and Destination Check is enabled

Source Check is enabled and Destination Check is disabled

Buy Now

Questions 34

Which statement is specific for Prisma Cloud when integrating into cloud environments?

Options:

An AutoFocus license is included in Prisma Cloud.

For multi-cloud environment licenses are required for the number of Prisma Cloud instances.

Can be natively integrated into Prisma Access.

No agents or proxies are required.

Buy Now

Exam Code: PSE-PrismaCloud

Exam Name: PSE Palo Alto Networks System Engineer Professional - Prisma Cloud

Last Update: Mar 28, 2025

Questions: 115

PDF + Testing Engine

$57.75 ~~$164.99~~

Testing Engine (only)

$43.75 ~~$124.99~~

PDF (only)

$36.75 ~~$104.99~~

Special Summer Sale - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 65percent

dumpspedia logo

Navigation:

PSE-PrismaCloud Sample Questions Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Quick Links

Why Us

Site Secure