PSE-SASE Online Practice Questions and Answers

How does the secure access service edge (SASE) security model provide cost savings to organizations?

A. The single platform reduces costs compared to buying and managing multiple point products.

B. The compact size of the components involved reduces overhead costs, as less physical space is needed.

C. The content inspection integration allows third-party assessment, which reduces the cost of contract services.

D. The increased complexity of the model over previous products reduces IT team staffing costs.

Which statement applies to Prisma Access licensing?

A. Internet of Things (IOT) Security is included with each license.

B. It provides cloud-based, centralized log storage and aggregation.

C. It is a perpetual license required to enable support for multiple virtual systems on PA- 3200 Series firewalls.

D. For remote network and Clean Pipe deployments, a unit is defined as 1 Mbps of bandwidth.

Organizations that require remote browser isolation (RBI) to protect their users can automate connectivity to third-party RBI products with which platform?

A. Zero Trust

B. SaaS Security API

C. GlobalProtect

D. CloudBlades API

Which product allows advanced Layer 7 inspection, access control, threat detection and prevention?

A. Infrastructure as a Service (IaaS)

B. remote browser isolation

C. network sandbox

D. Firewall as a Service (FWaaS)

What are two benefits provided to an organization using a secure web gateway (SWG)? (Choose two.)

A. VPNs remain connected, reducing user risk exposure.

B. Security policies for making internet access safer are enforced.

C. Access to inappropriate websites or content is blocked based on acceptable use policies.

D. An encrypted challenge-response mechanism obtains user credentials from the browser.

Which secure access service edge (SASE) networking component inspects web-based protocols and traffic to securely connect users to applications?

A. proxy

B. SD-WAN

C. secure web gateway (SWG)

D. cloud access security broker (CASB)

Which statement describes the data loss prevention (DLP) add-on?

A. It prevents phishing attacks by controlling the sites to which users can submit valid corporate credentials.

B. It employs automated policy enforcement to allow trusted behavior with a new Device-ID policy construct.

C. It is a centrally delivered cloud service with unified detection policies that can be embedded in existing control points.

D. It enables data sharing with third-party tools such as security information and event management (SIEM) systems.

Which two key benefits have been identified for a customer investing in the Palo Alto Networks Prisma secure access service edge (SASE) solution? (Choose two.)

A. decreased likelihood of a data breach

B. reduced input required from management during third-party investigations

C. decreased need for interaction between branches

D. reduced number of security incidents requiring manual investigation

Which App Response Time metric measures the amount of time it takes to transfer incoming data from an external server to a local client?

A. UDP Response Time (UDP-TRT)

B. Server Response Time (SRT)

C. Network Transfer Time (NTTn)

D. Round Trip Time (RTT)

Which connection method allows secure web gateway (SWG) access to internet-based SaaS applications using HTTP and HTTPS protocols?

A. GlobalProtect

B. Broker VM

C. explicit proxy

D. system-wide proxy