Weekend Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = simple70

Home
Paloalto Networks
PSE-Prisma Cloud Professional
PSE-Prisma-Pro-24
Palo Alto Networks System Engineer - Prisma CloudProfessional Questions and Answers

Pass the Paloalto Networks PSE-Prisma Cloud Professional PSE-Prisma-Pro-24 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam PSE-Prisma-Pro-24 Premium Access

View all detail and faqs for the PSE-Prisma-Pro-24 exam

Go to Exam

407 Students Passed

84% Average Score

92% Same Questions

Viewing page 1 out of 4 pages

Viewing questions 1-10 out of questions

Questions # 1:

In which two ways does Palo Alto Networks VM orchestration help service providers automatically provision security instances and policies? (Choose two.)

Options:

fully instrumented API

Aperture Orchestration Engine

VM Orchestration Policy Editor

support for Dynamic Address Groups

Answer

A, D

Questions # 2:

What is the scope of the Amazon Web Services 1AM Service?

Options:

global

regional

VPC

zonal

Answer

Questions # 3:

What are two benefits of Cloud Security Posture Management (CSPM) over other solutions? (Choose two.)

Options:

guaranteed proof of concept (POC) extensions beyond 30 days

native integration of network, endpoint, and cloud data to stop attacks

elimination of blind spots

proactive addressing of risks

Answer

C, D

Questions # 4:

The VM-Series integration with Amazon GuardDuty feeds malicious IP addresses to the VM-Series NGFW using XML API to populate a Dynamic Address Group within a Security policy that blocks traffic.

How does Amazon Web Services achieve this integration?

Options:

SNS

SQS

CodeDeploy

Lambda

Answer

Questions # 5:

Which filter type is valid in Asset Explorer?

Options:

resource name

instance

cloud region

feature

Answer

Questions # 6:

Which RQL string monitors all traffic from the Internet and Suspicious IPs destined for your Amazon Web Services databases''

Options:

network where source.publicnetwork IN ('Suspicious IPs') and dest.resource IN (resource where role IN ('AWS RDS', 'Database'))

network where source.publicnetwork IN ('Suspicious IPs', 'Internet IPs') and dest.resource IN (resource where role IN ('LDAP'))

network where dest.resource IN (resource where role = 'Database'}

network where source.publicnetwork IN ('Suspicious IPs', 'Internet IPs') and dest resource IN (resource where role IN ('AWS RDS'. 'Database'))

Answer

Questions # 7:

Which Amazon Web Services security service can provide host vulnerability information to Prisma Public Cloud?

Options:

Shield

Inspector

GuardDuty

Amazon Web Services WAF

Answer

Questions # 8:

Prevention against which type of attack is configurable in Web-Application and API Security (WAAS)?

Options:

credential stuffing

cross-site scripting (XSS)

shoulder surfing

distributed denial of service (DDoS)

Answer

Questions # 9:

An administrator has deployed an AWS transit gateway and used multiple VPC spokes to segregate a multi-tier application. The administrator also created a security VPC with multiple VM-Series NGFWs in an active/active deployment model via ECMP using Amazon Web Services VPN-based attachments.

What must be configured on the firewall to avoid asymmetric routing?

Options:

source address translation

destination address translation

port address translation

source and destination address translation

Answer

Questions # 10:

A customer has just launched a Palo Alto Networks VM-Series NGFW into an Amazon Web Services VPC to protect a cloud hosted application. They are experiencing unpredictable results and have identified that the interfaces on the firewall are in the incorrect order

Which PAN-OS CLI command resolves this issue?