7 お客様のコメント
質問 1:
How can a senior engineer use Strata Cloud Manager (SCM) to ensure that junior engineers are able to create compliant policies while preventing the creation of policies that may result in security gaps?
A. Run a Best Practice Assessment (BPA) at regular intervals and manually revert any policies not meeting company compliance standards.
B. Use security checks under posture settings and set the action to "deny" for all checks that do not meet the compliance standards.
C. Configure role-based access controls (RBACs) for all junior engineers to limit them to creating policies in a disabled state, manually review the policies, and enable them using a senior engineer role.
D. Configure an auto tagging rule in SCM to trigger a Security policy review workflow based on a security rule tag, then instruct junior engineers to use this tag for all new Security policies.
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
When configuring Remote Browser Isolation (RBI) with Prisma Access (Managed by Strata Cloud Manager), which element is required to define the protected URLs for mobile users?
A. A Security policy with the target URL categories and set the action to "Isolate"
B. A DNS Security profile applied to a Security policy with the action of "Isolate" for the target remote browser DNS categories
C. An RBI profile applied to the URL access management profile
D. A URL access management profile with site access set to "Isolate" applied to a Security policy
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
How can an engineer use risk score customization in SaaS Security Inline to limit the use of unsanctioned SaaS applications by employees within a Security policy?
A. Lower the risk score of sanctioned applications and increase the risk score for unsanctioned applications.
B. Increase the risk score for all SaaS applications to automatically block unwanted applications.
C. Build an application filter using unsanctioned SaaS as the characteristic.
D. Build an application filter using unsanctioned SaaS as the category.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A company has four branch offices between Canada Central and Canada East which use the same IPSec termination node and have QoS configured with customized bandwidth per site. An engineer wants to onboard a new branch office on the same IPSec termination node.
What is the QoS behavior for the new branch office?
A. Unallocated until manually assigned
B. Automatically distributed to 20% for each site
C. Automatically distributed to 25% for each site
D. Cannot be added to existing QoS configuration
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
Which policy configuration in Prisma Access Browser (PAB) will protect an organization from malicious BYOD and minimize the impact on the user experience?
A. One for session recording
B. One that blocks elements such as screen scrapers
C. One that blocks file exchange
D. One that allows access to applications with data masking or watermarking
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
How can a senior engineer use Strata Cloud Manager (SCM) to ensure that junior engineers are able to create compliant policies while preventing the creation of policies that may result in security gaps?
A. Run a Best Practice Assessment (BPA) at regular intervals and manually revert any policies not meeting company compliance standards.
B. Use security checks under posture settings and set the action to "deny" for all checks that do not meet the compliance standards.
C. Configure role-based access controls (RBACs) for all junior engineers to limit them to creating policies in a disabled state, manually review the policies, and enable them using a senior engineer role.
D. Configure an auto tagging rule in SCM to trigger a Security policy review workflow based on a security rule tag, then instruct junior engineers to use this tag for all new Security policies.
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
When configuring Remote Browser Isolation (RBI) with Prisma Access (Managed by Strata Cloud Manager), which element is required to define the protected URLs for mobile users?
A. A Security policy with the target URL categories and set the action to "Isolate"
B. A DNS Security profile applied to a Security policy with the action of "Isolate" for the target remote browser DNS categories
C. An RBI profile applied to the URL access management profile
D. A URL access management profile with site access set to "Isolate" applied to a Security policy
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
How can an engineer use risk score customization in SaaS Security Inline to limit the use of unsanctioned SaaS applications by employees within a Security policy?
A. Lower the risk score of sanctioned applications and increase the risk score for unsanctioned applications.
B. Increase the risk score for all SaaS applications to automatically block unwanted applications.
C. Build an application filter using unsanctioned SaaS as the characteristic.
D. Build an application filter using unsanctioned SaaS as the category.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A company has four branch offices between Canada Central and Canada East which use the same IPSec termination node and have QoS configured with customized bandwidth per site. An engineer wants to onboard a new branch office on the same IPSec termination node.
What is the QoS behavior for the new branch office?
A. Unallocated until manually assigned
B. Automatically distributed to 20% for each site
C. Automatically distributed to 25% for each site
D. Cannot be added to existing QoS configuration
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
Which policy configuration in Prisma Access Browser (PAB) will protect an organization from malicious BYOD and minimize the impact on the user experience?
A. One for session recording
B. One that blocks elements such as screen scrapers
C. One that blocks file exchange
D. One that allows access to applications with data masking or watermarking
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
Mukasa -
最初は試しの態度でPass4TestのSSE-Engineerの問題集を購入してみたんだが、本当に使えて、本番試験にも無事合格した。地味にすげぇ。