IT 202 Question 1 of 30
Question 1 of 30
4734539
Prisma Cloud Compute provides vulnerability management for which two options? (Choose
two.)
Select
... [Show More] All Correct Responses
S3 buckets
container host applications
container registries
serverless functions
Question 2 of 30
4734539
What are two competitors for Prisma Cloud Compute? (Choose two.)
Select All Correct Responses
McAfee
TrendMicro
Cloud Native
Aqua
Question 3 of 30
4734539
A prospective customer has a requirement to block all file transfers between a development
VPC and a production VPC within AWS GovCloud East. Which product do you recommend?
CN-Series
VM-Series
Cortex XSOAR
Prisma Cloud
Question 4 of 30
4734539
To secure all web traffic coming into an AWS VPC where should a customer position a VMSeries NGFW?
This cannot be done with the VM-Series. The customer should use Prisma Cloud for
this.
As a service running on each web server
Between the front-end load balancer and the web servers in the VPC
In AWS CloudFront to capture the traffic before it enters the VPC
Question 5 of 30
4734539
The CN-Series capabilities are targeted for which step of an application deployment?
Application Repository Scanning
Cloud Compliance Posture
Runtime Threat Prevention
Infrastructure as Code inspection
Question 6 of 30
4734539
Your existing AWS EKS customer has a requirement to allow only secure MS-SQL traffic
between pods within a cluster. Which Palo Alto Networks product do you suggest to your
customer?
Prisma Cloud Compute
VM-Series
PA-Series
CN-Series
Question 7 of 30
4734539
Which two options are in the CWPP and Niche Products competition category? (Choose
two.)
Select All Correct Responses
CloudHealth
Dome9
Skyhigh
Lacework
Question 8 of 30
4734539
What connectivity method is needed to gather information from Google Cloud Platform on
the Prisma Cloud console?
network connectivity through the VM-Series firewall in Google Cloud Platform
API connectivity from the Prisma Cloud to Google Cloud Platform
API connectivity through the VM-Series to the Google Cloud Platform
network connectivity to and through the VM-Series firewall in Google Cloud
Platform
Question 9 of 30
4734539
How is IaC defined in regard to Prisma Cloud?
infrastructure as component
infrastructure application cloud
infrastructure as code
integrity accessibility cloud
Question 10 of 30
4734539
Which two options are in the CASB competition category? (Choose two.)
Select All Correct Responses
CloudHealth
Skyhigh
Dome9
Netskope
Question 11 of 30
4734539
What is a typical concern or fear of customers shifting their infrastructure to cloud
environments?
The scale of infrastructure is much lower. Instead of many small instances, there
might be only some larger instances.
The scale of infrastructure is much lower. Instead of many large instances, there might
be only some smaller instances.
The scale of infrastructure is much higher. Instead of a handful of large instances,
there might be many smaller instances.
The scale of infrastructure is much higher. Instead of a handful of small instances,
there might be many larger instances.
Question 12 of 30
4734539
If a Prisma Cloud deployment in an unregulated environment is proposed, which customer
profile has the highest likelihood of a Prisma Cloud purchase?
customer with production apps in a multi-cloud deployment
customer with production apps in a single cloud deployment
customer with Dev/QA activity in a single cloud deployment
customer with Dev/QA activity in a multi-cloud deployment
Question 13 of 30
4734539
What can be found in the top layer of a container image?
binaries and libraries
operating system
Kubernetes
container engine
Question 14 of 30
4734539
Where does serverless computing execute in a public cloud vendor’s infrastructure?
in the vendor’s service infrastructure
in the on-premises data center in a hybrid deployment
in a VPC container running multiple serverless functions
within the resources that create the VPC
Question 15 of 30
4734539
Which is a workload for Prisma Cloud licensing?
a function launched 1 million times on AWS Lambda
a function launched one time on AWS Lambda
a hypervisor on a host supporting eight virtual machines
a standalone container running no defender
Question 16 of 30
4734539
Prisma Cloud Compute uses which native plugin to work with CI/CD tools?
Jenkins
ServiceNow
Kubernetes
Jira
Question 17 of 30
4734539
Which option enables the lowest possible false positive rates in Prisma Cloud Compute?
Cortex XDR Endpoint
more than 30 vulnerability feeds
Dynamic Address Group curation
VM-Series firewall Threat logs
Question 18 of 30
4734539
Which product monitors vendor configurations to alert when resource changes occur?
VM-Series firewall
Prisma Cloud
Cortex XDR Endpoint
Prisma Cloud Compute
Question 19 of 30
4734539
Which question should you ask when determining whether a prospect has a CI/CD pipeline?
Do they have established workflows, activities, and automation needed to secure their
remote locations and mobile users and provide a safe enablement of applications?
Have they ever thought of using Prisma Cloud?
Do they have established workflows, activities, and automation needed to shepherd a
new piece of functionality from ideation to an on-demand release of value to the
customers?
Do they have established workflows, activities, and automation needed to secure their
mobile workforce, IaaS, PaaS and SaaS environments?
Question 20 of 30
4734539
Which option helps organizations with Cloud Security Posture Management (CSPM)?
Asset management, configuration management, and compliance.
Scanning Cloud Assets for security misconfigurations before they are deployed.
Establishing workflows, activities, and automation needed to shepherd a new piece of
functionality from ideation to an on-demand release.
Visibility into containerized and serverless workloads.
Question 21 of 30
4734539
Which Edition of Prisma Cloud would you recommend for a customer who needs to monitor
workloads in an air-gapped private cloud environment?
Prisma Cloud Compute Edition
Prisma Cloud Enterprise Edition
Prisma Cloud Local Edition
Prisma Cloud Business Edition
Question 22 of 30
4734539
Which feature is available on the VM-Series firewalls that is not available with Native Cloud
Network Security
Block the OWASP top 10 security risks
Identify less restrictive IAM roles
Ability to block traffic based on IaaS tags
Identify applications running on non standard port [Show Less]