Summer Sale - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 65percent

Welcome To DumpsPedia

Apprentice Sample Questions Answers

Questions 4

Which tunnel protocol is used to secure communications over HTTPS?

Options:

A.

IKE

B.

GRE

C.

SSH

D.

TLS

Buy Now
Questions 5

Which attack takes place in the Exploitation phase of the cyber attack lifecycle?

Options:

A.

Weaponized PDF file executing on a target

B.

Malicious phishing link sent to a target

C.

Polymorphic malware altering its structure on a target after gaining access

D.

Undisclosed software vulnerability used to gain remote access to a target

Buy Now
Questions 6

Which concept is a strategic approach to cybersecurity that continuously validates every stage of a digital interaction?

Options:

A.

Incident response plan implementation

B.

Zero Trust adoption

C.

Compliance planning

D.

Operations playbook development

Buy Now
Questions 7

What is the function of an antivirus solution?

Options:

A.

Regulating traffic based on security rules

B.

Providing users protection against DNS poisoning

C.

Protecting user credentials

D.

Detecting malicious files using malware signatures

Buy Now
Questions 8

Which packets are considered east-west traffic in a data center?

Options:

A.

Those originating from the internet destined to the public IP address of a virtual server

B.

Those sent from a virtual desktop to a cloud-based proxy

C.

Those sent from a cloud-based server to a virtual desktop

D.

Those that move between virtual servers across a virtual switch

Buy Now
Questions 9

In which cloud service model does a company use hardware resources from a cloud service provider?

Options:

A.

Platform as a service (PaaS)

B.

Software as a service (SaaS)

C.

Network as a service (NaaS)

D.

Infrastructure as a service (IaaS)

Buy Now
Questions 10

What is a desired outcome of automation in a security operations center (SOC)?

Options:

A.

Increased number of alerts

B.

Increased MTTR

C.

Increased efficiency

D.

Increased false positives

Buy Now
Questions 11

What is an initial action when investigating a security incident?

Options:

A.

Identify indicators of compromise.

B.

Create a timeline of events.

C.

Write a threat intelligence report.

D.

Remove threats from the system.

Buy Now
Questions 12

Which cloud computing model allows a single organization to keep its data in a private environment but also access the scalability and cost-effectiveness of public resources?

Options:

A.

Hybrid

B.

Public

C.

Community

D.

Private

Buy Now
Questions 13

What is a software service that defines user or group identities in software environments and associates permissions?

Options:

A.

IAM

B.

WAN

C.

IKE

D.

DNS

Buy Now
Questions 14

Which type of device does a Host-Based Intrusion Detection System (HIDS) monitor?

Options:

A.

Appliance

B.

Computer

C.

Switch

D.

Router

Buy Now
Questions 15

What is responsible for securing web access for managed and unmanaged devices?

Options:

A.

IDS

B.

Cloud workload protection (CWP)

C.

Enterprise browser

D.

VLAN

Buy Now
Questions 16

What is the primary responsibility of the cloud provider in the cloud shared responsibility model?

Options:

A.

Configuring application-level security settings

B.

Securing underlying physical servers and network infrastructure

C.

Providing end-user training on application usage

D.

Monitoring and managing user access and permissions

Buy Now
Questions 17

What is a function of least privilege in Identity and Access Management (IAM)?

Options:

A.

Providing temporary access to resources for all users

B.

Granting users permission to all resources in the network

C.

Ensuring network users have the same access level for simplicity

D.

Allowing users the minimum permissions necessary to perform their jobs

Buy Now
Questions 18

How is Zero Trust implemented on a network?

Options:

A.

By assigning all security to a proxy solution

B.

By designating failover paths

C.

By inspecting and validating traffic continuously

D.

By removing excess network devices

Buy Now
Questions 19

Which type of attack involves employees using their credentials to copy proprietary software onto an external drive?

Options:

A.

Insider threat

B.

Social engineering

C.

Spear phishing

D.

Identity theft

Buy Now
Questions 20

Which device reads information from packets at the application layer of the OSI model to determine if traffic should be forwarded?

Options:

A.

Switch

B.

Next-generation firewall

C.

WAN accelerator

D.

Router

Buy Now
Questions 21

In infrastructure as a service (IaaS), which cloud component is the cloud service provider responsible for securing in the shared responsibility model?

Options:

A.

Physical wires and switches in the provider’s infrastructure

B.

API requests between microservices, such as back-end business logic traffic

C.

Database queries between cloud application services and external-facing web services

D.

Traffic from workloads to third-party services on the internet, such as authentication providers

Buy Now
Questions 22

Which type of segmentation divides traffic based on the interface on which a packet is received or sent?

Options:

A.

Zone

B.

Port

C.

Application

D.

Role

Buy Now
Questions 23

What is an example of a vulnerability?

Options:

A.

Code misconfiguration

B.

Trojan

C.

Attack on flawed code

D.

Virus

Buy Now
Questions 24

What are two internet of things (IoT) devices? (Choose two.)

Options:

A.

Laptop

B.

Router

C.

Security camera

D.

Patient imaging machine

Buy Now
Questions 25

What does DNS provide?

Options:

A.

List of local RIP tables

B.

Translation of a domain name into an IP address

C.

Creation of an IPSec tunnel between networks

D.

Network scanning for any vulnerabilities

Buy Now
Questions 26

Which components are secured by the cloud provider in a shared responsibility model?

Options:

A.

Virtual machines

B.

On-premises connectivity to hosts

C.

Website authentication

D.

Host servers

Buy Now
Questions 27

Which event would generate a false positive alert?

Options:

A.

A firewall categorizes a benign application as malicious.

B.

A network sensor is unable to identify a custom application.

C.

A network tunnel accidentally switches from one route to another.

D.

An employee attempts to access an unauthorized application.

Buy Now
Questions 28

Which tool resides on a host to identify malicious activity?

Options:

A.

Instruction Detection System (IDS)

B.

Unified threat detection device

C.

Endpoint protection agent

D.

Next-generation firewall appliance

Buy Now
Questions 29

What does NAT convert?

Options:

A.

Port to port

B.

Port to IP address

C.

IP address to IP address

D.

IP address to port

Buy Now
Questions 30

What is a documented strategy outlining how an organization will detect, respond to, and recover from cybersecurity attacks or other disruptions?

Options:

A.

Security framework alignment

B.

MTTR

C.

MTTD

D.

Incident response plan

Buy Now
Questions 31

Which layer exists in the OSI model but not in the TCP/IP model?

Options:

A.

Network

B.

Application

C.

Transport

D.

Presentation

Buy Now
Questions 32

Which device is an endpoint?

Options:

A.

Smart light bulb

B.

Smart plug

C.

Display monitor

D.

Smart watch

Buy Now
Questions 33

Which device operates at OSI Layer 2?

Options:

A.

Hub

B.

Switch

C.

Router

D.

Modem

Buy Now
Questions 34

What is a function of a cloud-native security platform (CNSP)?

Options:

A.

Protecting applications at runtime

B.

Generating cost analysis

C.

Sandboxing ransomware

D.

Executing penetration testing

Buy Now
Exam Code: Apprentice
Exam Name: Palo Alto Networks Cybersecurity Apprentice
Last Update: Jul 16, 2026
Questions: 115

PDF + Testing Engine

$59.99 $171.4

Testing Engine

$44.99 $128.55

PDF (Q&A)

$49.99 $142.82