Prisma Certified Cloud Security Engineer (PCCSE) — Question 32
A security team has a requirement to ensure the environment is scanned for vulnerabilities.
What are three options for configuring vulnerability policies? (Choose three.)
Answer options
- A. individual actions based on package type
- B. output verbosity for blocked requests
- C. apply policy only when vendor fix is available
- D. individual grace periods for each severity level
- E. customize message on blocked requests
Correct answer: B, C, D
Explanation
The correct options B, C, and D focus on the granularity of policy enforcement and reporting based on the severity of vulnerabilities. Option A deals with package types, which is not directly about configuring policies. Option E relates to blocked request messages, which does not impact the scanning process for vulnerabilities.