Palo Alto Networks PCCET Study Guide: Your Ultimate Preparation Dumps For Learning

1. What are three benefits of SD-WAN infrastructure? (Choose three.)

2. In SecOps, what are two of the components included in the identify stage? (Choose two.)

3. Data Loss Prevention (DLP) and Cloud Access Security Broker (CASB) fall under which

Prisma access service layer?

4. On an endpoint, which method is used to protect proprietary data stored on a laptop that has been stolen?

5. Which technique uses file sharing or an instant messenger client such as Meebo running over Hypertext Transfer Protocol (HTTP)?

6. What is the purpose of SIEM?

7. You have been invited to a public cloud design and architecture session to help deliver secure east west flows and secure Kubernetes workloads.

What deployment options do you have available? (Choose two.)

8. What does SIEM stand for?

9. On which security principle does virtualization have positive effects?

10. Which term describes data packets that move in and out of the virtualized environment from the host network or a corresponding traditional data center?

11. SecOps consists of interfaces, visibility, technology, and which other three elements? (Choose three.)

12. Which network firewall operates up to Layer 4 (Transport layer) of the OSI model and maintains information about the communication sessions which have been established between hosts on trusted and untrusted networks?

13. Web 2.0 applications provide which type of service?

14. Which type of malware takes advantage of a vulnerability on an endpoint or server?

15. Which aspect of a SaaS application requires compliance with local organizational security policies?

16. In which phase of the cyberattack lifecycle do attackers establish encrypted communication channels back to servers across the internet so that they can modify their attack objectives and methods?

17. Which Palo Alto subscription service identifies unknown malware, zero-day exploits, and advanced persistent threats (APTs) through static and dynamic analysis in a scalable, virtual environment?

18. Which network analysis tool can be used to record packet captures?

19. Which network firewall primarily filters traffic based on source and destination IP address?

20. What should a security operations engineer do if they are presented with an encoded string during an incident investigation?

21. Systems that allow for accelerated incident response through the execution of standardized and automated playbooks that work upon inputs from security technology and other data flows are known as what?

22. DRAG DROP

Order the OSI model with Layer7 at the top and Layer1 at the bottom.

23. Which of the following is a Routed Protocol?

24. Which classification of IDS/IPS uses a database of known vulnerabilities and attack profiles to identify intrusion attempts?

25. Which NGFW feature is used to provide continuous identification, categorization, and control of known and previously unknown SaaS applications?

26. Which type of IDS/IPS uses a baseline of normal network activity to identify unusual patterns or levels of network activity that may be indicative of an intrusion attempt?

27. Which of the following is an AWS serverless service?

28. Which native Windows application can be used to inspect actions taken at a specific time?

29. Which type of LAN technology is being displayed in the diagram?

30. Which activities do local organization security policies cover for a SaaS application?

31. Which two pieces of information are considered personally identifiable information (PII)? (Choose two.)

32. Which product from Palo Alto Networks extends the Security Operating Platform with the global threat intelligence and attack context needed to accelerate analysis, forensics, and hunting workflows?

33. How does DevSecOps improve the Continuous Integration/Continuous Deployment (CI/CD) pipeline?

34. In which situation would a dynamic routing protocol be the quickest way to configure routes on a router?

35. Which attacker profile uses the internet to recruit members to an ideology, to train them, and to spread fear and include panic?

36. On an endpoint, which method should you use to secure applications against exploits?

37. Which method is used to exploit vulnerabilities, services, and applications?

38. Which option is an example of a North-South traffic flow?

39. Routing Information Protocol (RIP), uses what metric to determine how network traffic

should flow?

40. A user is provided access over the internet to an application running on a cloud infrastructure. The servers, databases, and code of that application are hosted and maintained by the vendor.

Which NIST cloud service model is this?

41. Which IoT connectivity technology is provided by satellites?

42. Which type of Software as a Service (SaaS) application provides business benefits, is fast to deploy, requires minimal cost and is infinitely scalable?

43. Which characteristic of serverless computing enables developers to quickly deploy application code?

44. Which feature of the VM-Series firewalls allows them to fully integrate into the DevOps workflows and CI/CD pipelines without slowing the pace of business?

45. What is used to orchestrate, coordinate, and control clusters of containers?

46. Which model would a customer choose if they want full control over the operating system(s) running on their cloud computing platform?

47. Which of the following is a CI/CD platform?

48. Which network device breaks networks into separate broadcast domains?

49. Which item accurately describes a security weakness that is caused by implementing a “ports first” data security solution in a traditional data center?

50. What is the recommended method for collecting security logs from multiple endpoints?