Question 1

What is the primary purpose of creating Falcon Cloud Security Policies and Rules in a cloud environment?

Options :

A : To configure network ingress and egress rules for cloud-native firewalls.

B : To enforce granular security controls for workloads, users, and cloud resources based on predefined conditions.

C : To manage the deployment of Falcon agents across virtual machines.

D : To automate software updates for containerized applications in the cloud.

Answer: B

Question 2

When using Falcon Fusion, how can administrators ensure they are notified immediately about critical threats detected in their cloud infrastructure?

Options :

A : Activate the Immediate Alert Policy in Falcon Central.

B : Integrate Falcon Fusion with CrowdStrike Threat Graph for alerts.

C : Set up recurring reports in the Falcon Dashboard.

D : Configure automated actions in Workflow Builder to trigger notifications.

Answer: D

Question 3

What is the primary action required to enable runtime protection for containers in a cloud environment using CrowdStrike Falcon?

Options :

A : Install the Falcon sensor inside each running container.

B : Update the container runtime (e.g., Docker or containerd) to the latest version.

C : Enable the runtime protection policy within the Falcon console and assign it to a host group.

D : Deploy the Falcon Container Sensor to the host running the container.

Answer: C

Question 4

You are setting up CrowdStrike to assess images in your container registry. What is the first step to establish a connection for image scanning?

Options :

A : Enable automatic image scanning in the image registry without additional configuration.

B : Register the image registry’s credentials in the CrowdStrike Falcon console.

C : Enable CrowdStrike image scanning through the cloud provider’s default security settings.

D : Configure an API key in the CrowdStrike Falcon console and provide it to the image registry.

Answer: B

Question 5

Which of the following is the most critical step when configuring an automated remediation workflow in Falcon Fusion for AWS findings?

Options :

A : Configure the workflow to delete all flagged resources immediately upon detection.

B : Integrate AWS Security Hub with Falcon Fusion to detect findings.

C : Set up appropriate triggers and actions for specific AWS findings.

D : Ensure IAM roles in AWS grant unrestricted access for remediation actions.

Answer: C