nerdexam
CrowdStrike

CCCS-203B · Question #95

CCCS-203B Question #95: Real Exam Question with Answer & Explanation

The correct answer is D. Container Threat Detection (CTD) integrated with runtime protection.. Option A: NAC is a separate security mechanism that manages network permissions and access but does not provide real-time monitoring of network connections within container environments. Option B: External firewalls provide perimeter security but cannot identify or monitor intern

Question

Which feature in CrowdStrike Falcon enables the identification of potentially malicious network connections in a containerized environment?

Options

  • ANetwork Access Control (NAC) policies configured for each container.
  • BExternal firewalls integrated with the Falcon platform.
  • CCrowdStrike's endpoint protection suite without specific container policies.
  • DContainer Threat Detection (CTD) integrated with runtime protection.

Explanation

Option A: NAC is a separate security mechanism that manages network permissions and access but does not provide real-time monitoring of network connections within container environments. Option B: External firewalls provide perimeter security but cannot identify or monitor internal container network activity in real time. Option C: The endpoint protection suite focuses on host-based security and does not inherently include container-specific runtime protections or network monitoring capabilities. Option D: CTD identifies suspicious and malicious behaviors, including abnormal network activity, by monitoring container processes in real time. This is an essential capability of runtime protection in Falcon to secure workloads effectively.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CCCS-203B Practice