Container Security in Multi-Cloud Environments

Questions and Answers

Which solution helps customers operationalize cloud security quickly?

• FortiWeb
• FortiGate-VM
• FortiCNP (correct)
• Fortinet Security Fabric

What does FortiCNP help customers do?

• Scale their security solutions
• Maximize the value of security investments
• Correlate and normalize security findings (correct)
• Select coordinating cloud technologies

What does FortiCNP leverage to contextualize alerts?

• FortiWeb and FortiGate-VM
• AWS native services
• Fortinet Cloud Security Fabric solutions
• RRI intelligence (correct)

What does FortiCNP help increase?

Productivity (B)

What does FortiCNP help security teams focus on?

Remediating risks (C)

What does FortiCNP enable consistent workflows across?

Cloud technologies (C)

What does FortiCNP help teams proactively manage?

Risk (C)

What does FortiCNP help increase for customers?

Coverage (B)

What does FortiCNP help customers get the best value out of?

Security investments (B)

What does FortiCNP enrich with the findings from coordinating products?

RRI technology (C)

Which component of container protection provides deeper visibility into the security posture for container-based workloads across multi cloud environments?

Container visibility (B)

What does FortiCNP Container Protection simplify for DevSecOps adoption?

Integrating security in the early stages of the software development process (C)

Which platforms are supported for vulnerability image scanning in Container Protection?

Amazon EKS and Google GKE (C)

What does the integrated scanner in Container Protection analyze?

Container images through Common Vulnerability and Exposure (C)

What does the vulnerability image scan result in Container Protection provide?

Risk scores based on the severity of the vulnerability found (D)

What needs to be deployed on the Kubernetes cluster after registering a credential with Container Protection?

Kubernetes agent (C)

What does the Kubernetes agent enable Container Protection to provide?

Vulnerability and compliance assessments on the registry images (A)

What is leveraged to provide image scanning capability in Container Protection?

FortiCNP Jenkins Plug-in (B)

When are the images scanned in Container Protection?

When they are created just before they are deployed (C)

What does FortiCNP Resource Risk Insights provide?

Risk insights for resources (A)

FortiCNP RRI eliminates the need for agent deployment and allows for single-click deployment of cloud native security services.

True (D)

FortiCNP ingests findings from cloud native security services, correlates them, and presents actionable insights.

True (D)

FortiCNP RRI requires security teams to have specialized knowledge in each cloud environment to mitigate risks.

False (A)

FortiCNP integrates with AWS services such as Inspector, GuardDuty, and Security Hub for security monitoring and displaying relevant information regarding cloud assets.

True (C)

FortiCNP correlates all vulnerability findings from AWS Inspector and provides an overall risk score for each monitored resource.

True (C)

FortiCNP provides comprehensive configuration assessment to ensure the security of data storage but does not analyze documents inside the storage objects.

False (B)

FortiCNP allows administrators to customize policies and create patterns with regex to avoid unwanted access to sensitive files.

True (D)

FortiCNP Compliance reports provide an overview of the overall compliance of all cloud accounts with policies such as HIPAA, SOX / COBIT, and PCI.

True (A)

FortiCNP C-level reports provide an overview of the overall security status of your cloud accounts on FortiCNP.

True (D)

FortiCNP simplifies cloud security by adding integration complications.

False (D)

Flashcards are hidden until you start studying