Prisma Cloud Interview Guide
🟢 Easy (Basics)
1. Prisma Cloud?
CNAPP with CSPM, CWPP, CIEM across clouds & workloads.
2. IaC scanning?
Shift‑left checks for Terraform/K8s/etc.
3. Runtime defense?
Detect anomalies, CVEs, threats in containers/hosts.
4. Compliance?
CIS/NIST frameworks & custom policies.
5. CI/CD gating?
Fail builds on policy breaches.
🟡 Medium (Hands‑on)
1. Image scanning?
Scan registries; block deploys with critical CVEs.
2. Admission control?
Policy‑gate K8s workloads before schedule.
3. Network modeling?
Map flows; micro‑segmentation recommendations.
4. Least privilege?
CIEM right‑sizes cloud perms & JIT.
5. Alerting?
Route to SIEM/chat/ITSM with ownership.
đź”´ Hard (Advanced)
1. Multi‑cloud program?
Normalize tags/accounts; unified dashboards; exec KPIs.
2. Alert fatigue?
Risk scoring; suppress benign; expiry exceptions.
🧪 Scenario Questions & Answers
1. Audit in 2 weeks.
Enable framework, remediate top fails, export reports.
2. Runtime crypto‑miner detected.
Quarantine, rotate creds, patch images, add egress limits.
3. Over‑privileged roles.
Remediate with CIEM, enforce JIT & reviews.
Generated for quick interview revision — basics, hands-on, advanced, and scenarios.