Prisma Certified Cloud Security Engineer (PCCSE) — Question 223

A Prisma Cloud Administrator onboarded an AWS cloud account with agentless scanning enabled successfully to Prisma Cloud. Which item requires deploying defenders to be able to inspect the risk on the onboarded AWS account?

Answer options

• A. Host vulnerability risks
• B. Container vulnerability risks
• C. Container runtime risks
• D. Host compliances risks

Correct answer: C

Explanation

The correct answer is C, as deploying defenders is necessary to evaluate container runtime risks, which involve real-time inspection during container execution. Options A and B pertain to host and container vulnerabilities that can be assessed without defenders, while option D relates to compliance, which also does not require defenders for scanning.