Question 1

You are tasked with creating a new Kubernetes Admission Controller policy in Falcon Cloud Security. What is the primary purpose of this policy?

Options :

A : To control and enforce security configurations at the time of resource creation or update in Kubernetes.

B : To provide real-time alerts for unauthorized API calls in the Kubernetes control plane.

C : To monitor network traffic within Kubernetes clusters for malicious activity.

D : To scan container images for vulnerabilities after deployment.

Answer: A

Question 2

Which of the following is the most critical step when configuring an automated remediation workflow in Falcon Fusion for AWS findings?

Options :

A : Configure the workflow to delete all flagged resources immediately upon detection.

B : Integrate AWS Security Hub with Falcon Fusion to detect findings.

C : Set up appropriate triggers and actions for specific AWS findings.

D : Ensure IAM roles in AWS grant unrestricted access for remediation actions.

Answer: C

Question 3

What is the primary purpose of creating image assessment policies within Falcon Cloud Security?

Options :

A : To create firewall rules for restricting network traffic between containers.

B : To automate the deployment of container images across Kubernetes clusters.

C : To evaluate container images for vulnerabilities and enforce security compliance during the CI/CD pipeline.

D : To configure runtime monitoring for containerized applications in production environments.

Answer: C

Question 4

After identifying excessive permissions and missing MFA in IAM configurations, which remediation strategy is most aligned with CrowdStrike CIEM’s recommendations?

Options :

A : Delete all accounts flagged by CIEM’s Identity Analyzer.

B : Enable MFA and implement least privilege access policies for the flagged accounts.

C : Revoke all permissions from the identified accounts.

D : Transfer ownership of flagged accounts to a different administrator.

Answer: B

Question 5

You are setting up CrowdStrike to assess images in your container registry. What is the first step to establish a connection for image scanning?

Options :

A : Enable automatic image scanning in the image registry without additional configuration.

B : Register the image registry’s credentials in the CrowdStrike Falcon console.

C : Enable CrowdStrike image scanning through the cloud provider’s default security settings.

D : Configure an API key in the CrowdStrike Falcon console and provide it to the image registry.

Answer: B

Higher Test Marks with Free Online CrowdStrike-Cloud Exam Practice

Buying Options: