Paloalto Networks Prisma Certified Cloud Security Engineer PCCSE Question # 32 Topic 4 Discussion

Paloalto Networks Prisma Certified Cloud Security Engineer PCCSE Question # 32 Topic 4 Discussion

PCCSE Exam Topic 4 Question 32 Discussion:
Question #: 32
Topic #: 4

A DevOps lead reviewed some system logs and notices some odd behavior that could be a data exfiltration attempt. The DevOps lead only has access to vulnerability data in Prisma Cloud Compute, so the DevOps lead passes this information to SecOps.

Which pages in Prisma Cloud Compute can the SecOps lead use to investigate the runtime aspects of this attack?


A.

The SecOps lead should investigate the attack using Vulnerability Explorer and Runtime Radar.


B.

The SecOps lead should use Incident Explorer and Compliance Explorer.


C.

The SecOps lead should use the Incident Explorer page and Monitor > Events > Container Audits.


D.

The SecOps lead should review the vulnerability scans in the CI/CD process to determine blame.


Get Premium PCCSE Questions

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.