nerdexam
Palo_Alto_Networks

PCCSE · Question #243

What is the primary purpose of Prisma Cloud Code Security?

The correct answer is A. To address cloud infrastructure misconfigurations in code before they become alerts or incidents. Prisma Cloud Code Security is primarily used to detect and remediate infrastructure misconfigurations in code before they are deployed to the cloud.

Cloud Native Security

Question

What is the primary purpose of Prisma Cloud Code Security?

Options

  • ATo address cloud infrastructure misconfigurations in code before they become alerts or incidents
  • BTo provide a platform for developers to create custom security policies for applications
  • CTo offer instant feedback on application performance issues and bottlenecks
  • DTo triage alerts and incidents in realtime during deployment

How the community answered

(36 responses)
  • A
    86% (31)
  • B
    3% (1)
  • C
    8% (3)
  • D
    3% (1)

Why each option

Prisma Cloud Code Security is primarily used to detect and remediate infrastructure misconfigurations in code before they are deployed to the cloud.

ATo address cloud infrastructure misconfigurations in code before they become alerts or incidentsCorrect

Prisma Cloud Code Security (formerly Bridgecrew) performs static analysis on infrastructure-as-code (IaC) templates such as Terraform, CloudFormation, and Kubernetes manifests to identify misconfigurations at the code level. By shifting security left into the development and CI/CD pipeline phases, it prevents misconfigurations from ever reaching the cloud where they would generate alerts or incidents. This pre-deployment detection is the core design principle of the product.

BTo provide a platform for developers to create custom security policies for applications

While custom policies can be created, the primary purpose is proactive misconfiguration detection in IaC, not providing a general platform for application-level custom policies.

CTo offer instant feedback on application performance issues and bottlenecks

Prisma Cloud Code Security does not analyze application runtime performance; it focuses on infrastructure configuration correctness.

DTo triage alerts and incidents in realtime during deployment

Real-time alert triage during deployment is a function of Prisma Cloud's CSPM and runtime modules, not Code Security, which operates earlier in the pipeline.

Concept tested: Prisma Cloud Code Security shift-left IaC misconfiguration detection

Source: https://docs.prismacloud.io/en/enterprise-edition/content-collections/application-security/application-security

Topics

#Prisma Cloud Code Security#Shift-Left Security#IaC Security#Misconfiguration Prevention

Community Discussion

No community discussion yet for this question.

Full PCCSE Practice