PSE-SASE Online Practice Questions and Answers

Which product enables websites to be rendered in a sandbox environment in order to detect and remove malware and threats before they reach the endpoint?

A. remote browser isolation

B. secure web gateway (SWG)

C. network sandbox

D. DNS Security

Which elements of Autonomous Digital Experience Management (ADEM) help provide end- to-end visibility of everything in an organization's environment?

A. integrated threat intelligence management, automated distribution to enforcement points at scale, full ticket mirroring

B. scanning of all traffic, ports, and protocols

C. data collected from endpoint devices, synthetic monitoring tests, and real-time traffic

D. alerts, artifacts, and MITRE tactics

How does a secure web gateway (SWG) protect users from web-based threats while still enforcing corporate acceptable use policies?

A. Users are mapped via server logs for login events and syslog messages from authenticating services.

B. It uses a cloud-based machine learning (ML)-powered web security engine to perform ML-based inspection of web traffic in real-time.

C. It prompts the browser to present a valid client certificate to authenticate the user.

D. Users access the SWG, which then connects the user to the website while still performing security measures.

In the aggregate model, how are bandwidth allocations and interface tags applied beginning in Prisma Access 1.8?

A. License bandwidth is allocated to a CloudGenix controller; interface tags are set with a compute region.

B. License bandwidth is allocated to a compute region; interface tags are set with a CloudGenix controller.

C. License bandwidth is allocated to a compute region; interface tags are set with a Prisma Access location.

D. License bandwidth is allocated to a Prisma Access location; interface tags are set with a compute region.

Which application gathers health telemetry about a device and its WiFi connectivity in order to help determine whether the device or the WiFi is the cause of any performance issues?

A. data loss prevention (DLP)

B. remote browser isolation (RBI)

C. Cortex Data Lake

D. GlobalProtect

How does SaaS Security Inline help prevent the data security risks of unsanctioned security-as-a-service (SaaS) application usage on a network?

A. It provides mobility solutions and/or large-scale virtual private network (VPN) capabilities.

B. It offers risk scoring, analytics, reporting, and Security policy rule authoring.

C. It provides built-in external dynamic lists (EDLs) that secure the network against malicious hosts.

D. It prevents credential theft by controlling sites to which users can submit their corporate credentials.

What is a benefit of deploying secure access service edge (SASE) with a secure web gateway (SWG) over a SASE solution without a SWG?

A. A heartbeat connection between the firewall peers ensures seamless failover in the event that a peer goes down.

B. It prepares the keys and certificates required for decryption, creating decryption profiles and policies, and configuring decryption port mirroring.

C. Protection is offered in the cloud through a unified platform for complete visibility and precise control over web access while enforcing security policies that protect users from hostile websites.

D. It creates tunnels that allow users and systems to connect securely over a public network as if they were connecting over a local area network (LAN).

What is an advantage of next-generation SD-WAN over legacy SD-WAN solutions?

A. It enables definition of the privileges and responsibilities of administrative users in a network.

B. It allows configuration to forward logs to external logging destinations, such as syslog servers.

C. It steers traffic and defines networking and security policies from an application-centric perspective, rather than a packet-based approach.

D. It provides the ability to push common configurations, configuration updates, and software upgrades to all or a subset of the managed appliances.

In which step of the Five-Step Methodology for implementing the Zero Trust model are the services most valuable to the company defined?

A. Step 2: Map the transaction flows

B. Step 4: Create the Zero Trust policy

C. Step 5: Monitor and maintain the network

D. Step 1: Define the protect surface

How does Autonomous Digital Experience Management (ADEM) improve user experience?

A. The root cause of any alert can be viewed with a single click, allowing users to swiftly stop attacks across the environment.

B. The virtual appliance receives and stores firewall logs without using a local Log Collector, simplifying required steps users must take.

C. Working from home or branch offices, all users get the benefit of a digital experience management solution without the complexity of installing additional software and hardware.

D. It applies in-depth hunting and forensics knowledge to identify and contain threats before they become a breach.