最新250-550テスト材料には有効な250-550テストエンジン [Q36-Q54]

Share

最新250-550テスト材料には有効な250-550テストエンジン

250-550更新された試験問題集で[2021年最新] 練習には有効な試験問題集


Symantec 250-550 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Describe false positives, their impact, and how SES can be used to mitigate them
  • Describe how SES can be used to protect endpoints against zero-day attacks
トピック 2
  • Describe Advanced Machine Learning and how SES employs this protection to protect endpoints against unknown threats
  • Describe how the Cyber Defense Manager is used to identify threats in an environment
トピック 3
  • Describe the various methods SES uses to identify unmanaged endpoints
  • Describe various Memory Exploit Mitigation techniques and how SES protects against them
トピック 4
  • Describe the tools and techniques included in SES to adapt security policies based upon threat detections
  • Describe the steps that can be taken to remediate threats locally on an endpoint
トピック 5
  • Describe the SES policy and device groups and how they are used
  • Describe the various types of threats that threaten endpoint devices
トピック 6
  • Describe the network requirements needed for connecting endpoints to the cloud management platform
  • Describe how to utilize console data to identify and endpoints security status
トピック 7
  • Describe threat artifacts and the best practices to follow after a major endpoint security event
  • Describe LiveUpdate functionality and configuration options

 

質問 36
An endpoint is offline, and the administrator issues a scan command. What happens to the endpoint when it restarts, if it lacks connectivity?

  • A. The system scans after the content update is downloaded.
  • B. The system starts without scanning.
  • C. The system is scanning when started.
  • D. The system downloads the content without scanning.

正解: D

 

質問 37
Which SES advanced feature detects malware by consulting a training model composed of known good and known bad fries?

  • A. Signatures
  • B. Reputation
  • C. Artificial Intelligence
  • D. Advanced Machine Learning

正解: D

 

質問 38
An administrator selects the Discovered Items list in the ICDm to investigate a recent surge in suspicious file activity. What should an administrator do to display only high risk files?

  • A. Apply a list filter
  • B. Apply a search rule
  • C. Apply a search modifier
  • D. Apply a list control

正解: B

 

質問 39
In which phase of MITRE framework would attackers exploit faults in software to directly tamper with system memory?

  • A. Discovery
  • B. Exfiltration
  • C. Defense Evasion
  • D. Execution

正解: C

 

質問 40
After editing and saving a policy, an administrator is prompted with the option to apply the edited policy to any assigned device groups.
What happens to the new version of the policy if the administrator declines the option to apply it?

  • A. The policy display is returned to edit mode
  • B. An unassigned version of the policy is created
  • C. The new version of the policy is added to the "in progress" list
  • D. The new version of the policy is deleted

正解: A

 

質問 41
What are the Exploit Mitigation security control's mitigation techniques designed to prevent?

  • A. File-less attacks
  • B. Misbehaving applications
  • C. Rootkit downloads
  • D. Packed file execution

正解: C

 

質問 42
Which Antimalware technology is used after all local resources have been exhausted?

  • A. Emulator
  • B. Reputation
  • C. ITCS
  • D. Sapient

正解: C

 

質問 43
Which security threat uses malicious code to destroy evidence, break systems, or encrypt data?

  • A. Persistence
  • B. Impact
  • C. Discovery
  • D. Execution

正解: D

 

質問 44
Which rule types should be at the bottom of the list when an administrator adds device control rules?

  • A. Specific "device type" rules
  • B. Specific "device model" rules
  • C. General "brand defined" rules
  • D. General "catch all" rules

正解: B

 

質問 45
In the ICDm, administrators are assisted by the My Task view. Which automation type creates the tasks within the console?

  • A. Advanced Machine Learning
  • B. Machine Learning
  • C. Administrator defined rules
  • D. Artificial Intelligence

正解: D

 

質問 46
Which security control is complementary to IPS, providing a second layer of protection against network attacks?

  • A. Network Protection
  • B. Firewall
  • C. Antimalware
  • D. Host Integrity

正解: A

 

質問 47
What characterizes an emerging threat in comparison to traditional threat?

  • A. Emerging threats are more sophisticated than traditional threats.
  • B. Emerging threats use new techniques and 0-day vulnerability to propagate.
  • C. Emerging threats are undetectable by signature based engines.
  • D. Emerging threats requires artificial intelligence to be detected.

正解: B

 

質問 48
What are two (2) benefits of a fully cloud managed endpoint protection solution? (Select two)

  • A. Increased visibility
  • B. Reduced database usage
  • C. Reduced 3rd party licensing cost
  • D. Increased content update frequency
  • E. Reduced network usage

正解: B,C

 

質問 49
Which dashboard should an administrator access to view the current health of the environment?

  • A. The Security Control Dashboard
  • B. The SES Dashboard
  • C. The Antimalware Dashboard
  • D. The Device Integrity Dashboard

正解: A

 

質問 50
Which two (2) steps should an administrator take to guard against re-occurring threats? (Select two)

  • A. Verify that all endpoints receive scheduled Live-Update content
  • B. Confirm that daily active and weekly full scans take place on all endpoints
  • C. Add endpoints to a high security group and assign a restrictive Antimalware policy to the group
  • D. Use Power Eraser to clean endpoint Windows registries
  • E. Quarantine affected endpoints

正解: D,E

 

質問 51
Which Endpoint > Setting should an administrator utilize to locate unmanaged endpoints on a network subnet?

  • A. Discover and Deploy
  • B. Endpoint Enrollment
  • C. Device Discovery
  • D. Discover Endpoints

正解: D

 

質問 52
Which report template type should an administrator utilize to create a daily summary of network threats detected?

  • A. Blocked Threats Report
  • B. Network Risk Report
  • C. Access Violation Report
  • D. Intrusion Prevention Report

正解: C

 

質問 53
Which Firewall Stealth setting prevents OS fingerprinting by sending erroneous OS information back to the attacker?

  • A. Disable OS fingerprint detection
  • B. Enable OS fingerprint masqueradi
  • C. Enable OS fingerprint protection
  • D. Disable OS fingerprint profiling

正解: B

 

質問 54
......

250-550サンプルには正確な更新された問題:https://jp.fast2test.com/250-550-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어