PCCET Exam Questions
233 real PCCET exam questions with expert-verified answers and explanations. Page 4 of 5.
- Question #162Cybersecurity Foundations
Which option is a sequence of events that an attacker would perform to infiltrate a network and steal data?
Cyber kill chainAttack phasesThreat actor methodology - Question #163Cybersecurity Foundations
Which application types are not provided by IT but are allowed with restrictions because of their business benefits?
Application governanceShadow ITApplication classificationIT policy - Question #164Security Operations (SOC)
How does Cortex XSOAR improve the efficiency of security operations?
Cortex XSOARSOARSecurity AutomationIncident Response - Question #165Cybersecurity Foundations
Which two malware types can replicate themselves? (Choose two.)
Malware typesSelf-replicating malwareWormsViruses - Question #166Network Security
What inspects data that is egressing a network and prevents certain sensitive data - based on defined policies - from leaving the network?
Data Loss PreventionData SecurityNetwork Egress Filtering - Question #167Endpoint Security
Which technique is used to limit information about lost or stolen mobile devices?
Mobile securityRemote wipeData protectionEndpoint security - Question #168Cybersecurity Foundations
Which security model relies on the assumption that everything on the internal network can be trusted?
Security ModelsPerimeter SecurityNetwork TrustTraditional Security - Question #169Endpoint Security
What are three capabilities of mobile device management? (Choose three.)
Mobile Device ManagementEndpoint SecurityRemote WipeMalware Protection - Question #170Cybersecurity Foundations
What is the goal of a watering hole attack?
Watering Hole AttackAttack TypesCyber Threats - Question #171Network Security
Which capability of the network-as-a-service layer uses the philosophy of "never trust, always verify"?
Zero TrustZTNANetwork SecurityAccess Control - Question #172Cybersecurity Foundations
What is the port for SMTP?
SMTPPort numbersNetworking protocolsStandard ports - Question #173Cybersecurity Foundations
Which law strengthens data protection for EU residents and addresses the export of personal data outside the EU?
GDPRData ProtectionPrivacy RegulationsLegal Compliance - Question #174Network Security
Which type of firewall configuration should be deployed to protect north-south traffic?
Firewall deploymentHigh availabilityNetwork architecturePerimeter security - Question #175Cybersecurity Foundations
What does the MITRE ATT&CK matrix techniques contain?
MITRE ATT&CKAdversary TechniquesCybersecurity Frameworks - Question #176Network Security
Which network is using a subnet mask of 255.255.255.192?
SubnettingCIDRIP AddressingNetwork Masks - Question #177Cloud Security
In a Software-as-a-Service (SaaS) environment, which two data exposures result from well- intentioned end users? (Choose two.)
SaaS SecurityData ExposureInsider ThreatCloud Data Governance - Question #178Network Security
Which core NGFW subscription service defends networks from advanced persistent threats (APTs)?
NGFW ServicesAdvanced Persistent Threats (APTs)WildFireThreat Detection - Question #179Cybersecurity Foundations
Before incorporating the DevSecOps process, when was security applied in the software- development lifecycle?
DevSecOpsSDLCSecurity IntegrationTraditional Security Practices - Question #180Cybersecurity Foundations
Which protocol is responsible for the translation of an IP address to a MAC address?
ARPIP addressingMAC addressingNetworking protocols - Question #181Network Security
In what way does a DDoS attack differ from a DoS attack?
DDoSDoSBotnetsCyberattacks - Question #182Cybersecurity Foundations
Which two tools are used for both DevOps and software development? (Choose two.)
DevOps toolsSoftware development toolsVersion controlCI/CD - Question #183Network Security
Network isolation can be achieved using what kind of logical network attribute?
Network isolationVLANsLogical networkingNetwork segmentation - Question #184Security Operations (SOC)
What is the function of SOAR?
SOARSecurity OrchestrationSecurity AutomationIncident Response - Question #185Endpoint Security
Which endpoint security solution protects against malicious software designed to invade a device and collect user data?
Endpoint SecurityMalware ProtectionAnti-virus - Question #186Cybersecurity Foundations
Network vulnerability scanners and analyzers, such as Nessus and Wireshark, are used in which step of the cyberattack lifecycle?
Cyberattack LifecycleReconnaissance PhaseVulnerability ScannersNetwork Analyzers - Question #187Security Operations (SOC)
How can Cortex XSIAM reduce incident response times dramatically?
Cortex XSIAMIncident ResponseAI in SecurityThreat Detection - Question #188Security Operations (SOC)
What is the recommended method for collecting security logs from multiple endpoints?
Log ManagementSIEMSecurity MonitoringCentralized Logging - Question #189Security Operations (SOC)
What does "forensics" refer to in a Security Operations process?
Security ForensicsIncident InvestigationSecurity OperationsData Collection - Question #190Cybersecurity Foundations
If an endpoint does not know how to reach its destination, what path will it take to get there?
Default GatewayIP RoutingNetwork CommunicationEndpoints - Question #191Cloud Security
A user is given access to a service that gives them access to cloud-hosted physical and virtual servers, storage, and networking. Which NIST cloud service model is this?
Cloud ComputingNIST Cloud ModelsIaaSCloud Service Models - Question #192Endpoint Security
What is a key benefit of Cortex XDR?
Cortex XDRXDREndpoint ProtectionThreat Prevention - Question #193Network Security
Which Palo Alto Networks subscription dynamically discovers and maintains a real-time inventory of devices on your network?
IoT SecurityDevice InventoryNetwork VisibilityPalo Alto Networks Subscriptions - Question #194Network Security
Which method is used to enumerate vulnerabilities, services, and applications?
Port scanningNetwork enumerationVulnerability assessmentReconnaissance - Question #195Network Security
Which encryption protocol is most commonly used in site-to-site or device-to-device VPN connections?
VPNIPsecNetwork ProtocolsEncryption - Question #196Cybersecurity Foundations
In the Transport layer of the OSI model, what is a protocol data unit (PDU) called?
OSI ModelTransport LayerPDUNetworking Basics - Question #197Security Operations (SOC)
Network traffic capture and endpoint data capture are elements of which pillar of SecOps?
SecOps pillarsVisibilityNetwork monitoringEndpoint monitoring - Question #198Network Security
Which technique uses file sharing or an instant messenger client such as Meebo running over Hypertext Transfer Protocol (HTTP)?
Network TunnelingProtocol EvasionFirewall BypassCommon Services - Question #199Cybersecurity Foundations
What type of area network connects end-user devices?
Networking FundamentalsNetwork TypesLAN - Question #200Security Operations (SOC)
What should a security operations engineer do if they are presented with an encoded string during an incident investigation?
Incident InvestigationDecodingObfuscationSecurity Operations - Question #201Security Operations (SOC)
What is the primary purpose of a case management system?
Case Management SystemSecurity OperationsAlert TriageOperational Efficiency - Question #202Cloud Security
What are three benefits of the cloud native security platform? (Choose three.)
Cloud Native SecurityCloud Security BenefitsPlatform AdvantagesDigital Transformation - Question #203Network Security
Which security component can detect command-and-control traffic sent from multiple endpoints within a corporate data center?
Next-generation Firewall (NGFW)Command and Control (C2)Threat DetectionNetwork Security Components - Question #204Endpoint Security
Which native Windows application can be used to inspect actions taken at a specific time?
Windows administrationEvent loggingSystem monitoringSecurity auditing - Question #205Cybersecurity Foundations
Which of the following is a Routed Protocol?
Routed ProtocolsInternet Protocol (IP)Networking Fundamentals - Question #206Cybersecurity Foundations
What are the two most prominent characteristics of the malware type rootkit? (Choose two.)
RootkitMalware characteristicsOperating System ControlMalware evasion - Question #207Cloud Security
What is a key method used to secure sensitive data in Software-as-a-Service (SaaS) applications?
SaaS SecurityData Loss Prevention (DLP)Device ManagementAccess Control - Question #208Cybersecurity Foundations
In the network diagram below, which device is the router?
Network DevicesRouterNetwork FundamentalsNetworking Concepts - Question #209Security Operations (SOC)
Which SOAR feature coordinates across technologies, security teams, and external users for centralized data visibility and action?
SOARPlaybooksSecurity AutomationIncident Response - Question #210Cloud Security
Which feature of the VM-Series firewalls allows them to fully integrate into the DevOps workflows and CI/CD pipelines without slowing the pace of business?
VM-Series FirewallsCloud SecurityDevOps IntegrationElastic Scalability - Question #211Cybersecurity Foundations
You received an email, allegedly from a bank, that asks you to click a malicious link to take action on your account. Which type of attack is this?
PhishingSocial EngineeringEmail SecurityThreat Types