PSE-PrismaCloud PSE Palo Alto Networks System Engineer Professional - Prisma Cloud Questions and Answers

Generate a compliance report from the Compliance dashboard

Write an RQL query from the "Investigate" tab.

Configure an Inventory report from the "Alerts" tab

Open the Asset dashboard, filter on Amazon Web Services, and click "Amazon RDS" resources.

config from cloud.resource where api.name = 'aws-rds-describe-db-instances' AND json.rule = storageEncrypted is false

event from cloud.audit_logs where api.name = 'aws-rds-describe-db-instances' AND json.rule = publiclyAccessible is true

config from cloud.resource where api.name = 'aws-rds-describe-db-instances' AND json.rule = publiclyAccessible is true

config from cloud.resource where api.name = 'aws-ec2-describe-instances' AND json.rule = publiclyAccessible is true

GDPR

EU Data Protection Directive 95/46/EC

ISO 27001

Payment Card Industry 3.0

Create an RQL config query to identify resources with the tag "Private."

Create an RQL network query to identify traffic from resources tagged "Private."

Open the Asset Dashboard, filter on tags: and choose "Private."

Generate a CIS compliance report and review the "Asset Summary."

Anomaly

Audit Event

Network

Configuration

Azure Application Insight

Resource Group

Azure Security Center

Bootstrapping

ARM Template

self-managed in a customer's own container platform

self-contained hardware appliance

as a stand-alone Windows application

Cloud-hosted as part of a Prisma Cloud Enterprise tenant from Palo Alto Networks

Changes will take effect after a new learning phase of 30 days.

System will perform a reboot, deleting all past alerts.

Existing alerts and new alerts are regenerated based on the new setting.

New alerts are generated based on the new setting.

CloudLog

CloudEvent

CloudWatch

CIoudTrail

GuardDuty

CloudTrail Audit Logs

Activity Logs

Inspector

> twistcli images scan

> twistcli project scan

> twistcli scan projects

> twistcli scan images

Reserved IP

PIP

EIP

Floating IP

CloudFormation is a procedural configuration management tool.

CloudFormation templates can be used on both Amazon Web Services and Microsoft Azure

CloudFormation templates can be written in JSON or YAML

CloudFormation is a declarative orchestration tool.

Allow Prisma Cloud to automatically optimize registry scans with version pattern matching.

Allow Prisma Cloud to automatically distribute the scan job across a pool of available Defenders.

Explicitly specify the Defender to do the job.

Explicitly specify the predefined version pattern-matching algorithm.

The thresholds can be set to informational, low, medium, high, and critical.

The alert threshold always has precedence over, and can be greater than, the block threshold.

The block threshold must always be equal to or greater than the alert threshold.

The block threshold always has precedence over, and can be less than, the alert threshold.

Cloud Workload Protection (CWP)

Cloud Code Security

Cloud Network Security

Cloud Identity Security

HIPAA

CIS Benchmark

Payment Card Industry DSS V3

GDPR

audit from

network from

event from

config from

If options are listed after the image name; they will be ignored.

If option "--user" is used, it is mandatory to use option "--password.

If option "--address" is unspecified, all images are scanned.

Option "--output-file" cannot be used in conjunction with option "--details."

network where source.publicnetwork IN ('Suspicious IPs') and dest.resource IN (resource where role IN ('AWS RDS', 'Database'))

network where source.publicnetwork IN ('Suspicious IPs', 'Internet IPs') and dest.resource IN (resource where role IN ('LDAP'))

network where dest.resource IN (resource where role = 'Database'}

network where source.publicnetwork IN ('Suspicious IPs', 'Internet IPs') and dest resource IN (resource where role IN ('AWS RDS'. 'Database'))

config where api.name = 'aws-ec2-describe-volumes, AND json.rule = tags[*]key contains DataClassification

config where api.name = ,aws-ec2-describe-volumes' AND json.rule = tags[*]key != DataClassification

config where api.name = ,aws-ec2-describe-volumes' AND json.rule = tags[*].key exists

config where api.name = 'aws-ec2-describe-volumes' AND json.rule = tags[*].key = 1

Configure an Inventory report from the "Alerts" tab.

Write an RQL query from the "Investigate" tab.

Open the Asset dashboard, filter on Amazon Web Services, and click "Amazon RDS" resources.

Generate a compliance report from the Compliance dashboard.

Custom threat signature

Zone Protection Profile

QoS Profile to limit incoming requests

DoS Protection Profile with specific session counts

guaranteed proof of concept (POC) extensions beyond 30 days

native integration of network, endpoint, and cloud data to stop attacks

elimination of blind spots

proactive addressing of risks

through ARM Templates in the GitHub Repository

through Solution Templates in the Azure Marketplace

through Expedition in the Customer Success Portal

through Iron Skillets in the GitHub Repository

Shield

Inspector

GuardDuty

Amazon Web Services WAF

fully instrumented API

Aperture Orchestration Engine

VM Orchestration Policy Editor

support for Dynamic Address Groups

resource name

instance

cloud region

feature

network flow logs

list of all database instances' tables

metadata about compute resources' configuration

Cortex Data Lake