Question 1

What does each proxy service define? (Choose two.)

Accepted Answer

A)  ProxySG SGOS version 
B)  Proxy type to use to process traffic 
C)  Attributes 
D)  Policy 
A)  ProxySG SGOS version 
B)  Proxy type to use to process traffic 
C)  Attributes 
D)  Policy B,C

Question 2

Why is Kerberos performance better than NTLM?

Accepted Answer

A)  It uses less encryption 
B)  None of these answers 
C)  Only two round trips are required between the browser and an authentication server 
D)  It works with later versions of Microsoft Windows 
A)  It uses less encryption 
B)  None of these answers 
C)  Only two round trips are required between the browser and an authentication server 
D)  It works with later versions of Microsoft Windows B

Question 3

What module should an administrator utilize to view all the activities in cloud applications and conduct analysis?

Accepted Answer

A)  Audit 
B)  Detect 
C)  Protect 
D)  Investigate 
A)  Audit 
B)  Detect 
C)  Protect 
D)  Investigate A

Question 4

What should an administrator do with a cloud application that does NOT meet the compliance requirements, but has mitigating controls available?

Accepted Answer

A)  Sanction 
B)  Monitor 
C)  Block 
D)  Review 
A)  Sanction 
B)  Monitor 
C)  Block 
D)  Review

Question 5

Where in the Management Console would you look to find all sessions that are being intercepted by the services framework of the ProxySG?

Accepted Answer

A)  Heartbeats 
B)  Maintenance > System Tools 
C)  Statistics > Sessions > Active Sessions 
D)  Advanced statistics 
A)  Heartbeats 
B)  Maintenance > System Tools 
C)  Statistics > Sessions > Active Sessions 
D)  Advanced statistics

Question 6

How does the Audit module get data?

Accepted Answer

A)  Firewalls and proxies 
B)  Cloud application APIs 
C)  CloudSOC gateway 
D)  Manual uploads 
A)  Firewalls and proxies 
B)  Cloud application APIs 
C)  CloudSOC gateway 
D)  Manual uploads

Question 7

Which CloudSOC module is similar to a Data Loss Prevention (DLP) system?

Accepted Answer

A)  Detect 
B)  Investigate 
C)  Audit 
D)  Protect 
A)  Detect 
B)  Investigate 
C)  Audit 
D)  Protect

Question 8

Refer to the exhibit. An administrator found several incidents like this in the Investigate module. What type of detector should an administrator modify to reduce the frequency of this type of incident?

Accepted Answer

A)  Threshold based 
B)  Threats based 
C)  Sequence based 
D)  Behavior based 
A)  Threshold based 
B)  Threats based 
C)  Sequence based 
D)  Behavior based

Question 9

What are three (3) main risks that CloudSOC solves in cloud applications?

Accepted Answer

A)  Phishing, Data Security, Threat Protection 
B)  Cloud Visibility, Data Security, Threat Protection 
C)  Cloud Visibility, Data Security, Web Scanning 
D)  Phishing, Cloud Visibility, Threat Protection 
A)  Phishing, Data Security, Threat Protection 
B)  Cloud Visibility, Data Security, Threat Protection 
C)  Cloud Visibility, Data Security, Web Scanning 
D)  Phishing, Cloud Visibility, Threat Protection

Question 10

What happens when the ProxySG bypasses traffic?

Accepted Answer

A)  No policy can be applied 
B)  Only the default policy can be applied 
C)  The traffic is blocked 
D)  An exception message is displayed to the user 
A)  No policy can be applied 
B)  Only the default policy can be applied 
C)  The traffic is blocked 
D)  An exception message is displayed to the user

Question 11

What is the objective of the Access Monitoring policy?

Accepted Answer

A)  To notify an administrator when activities, such as objects being modified, are performed in a cloud application. 
B)  To restrict the direct sharing of documents from cloud applications based both on their content and the characteristics of the user. 
C)  To prevent users from sharing documents, either publically, externally, or internally. 
D)  To restrict the uploading and downloading of documents from the user's computer to the cloud application, based both on the content of the documents and the characteristics of the user. 
A)  To notify an administrator when activities, such as objects being modified, are performed in a cloud application. 
B)  To restrict the direct sharing of documents from cloud applications based both on their content and the characteristics of the user. 
C)  To prevent users from sharing documents, either publically, externally, or internally. 
D)  To restrict the uploading and downloading of documents from the user's computer to the cloud application, based both on the content of the documents and the characteristics of the user.

Question 12

Which type of a policy can perform a user log out from Single Sign On?

Accepted Answer

A)  Access Monitoring policy 
B)  ThreatScore based policy 
C)  Access enforcement policy 
D)  None of the above 
A)  Access Monitoring policy 
B)  ThreatScore based policy 
C)  Access enforcement policy 
D)  None of the above

Question 13

Does the policy trace flag malfunctioning policy?

Accepted Answer

A)  Yes 
B)  No 
A)  Yes 
B)  No

Question 14

Which CloudSOC module is similar to an Intrusion Protection System (IPS)/Intrusion Detection System (IDS)?

Accepted Answer

A)  Protect 
B)  Investigate 
C)  Detect 
D)  Audit 
A)  Protect 
B)  Investigate 
C)  Detect 
D)  Audit

Question 15

Which of the following are always included in both the request and response headers?

Accepted Answer

A)  Information relevant to the connection between the client and the server 
B)  DNS query 
C)  ICAP version number 
D)  Cipher suite 
A)  Information relevant to the connection between the client and the server 
B)  DNS query 
C)  ICAP version number 
D)  Cipher suite

Question 16

Where are surrogate credentials stored?

Accepted Answer

A)  On the authentication server 
B)  In the ProxySG authentication cache 
C)  In a cookie in the user's web browser 
A)  On the authentication server 
B)  In the ProxySG authentication cache 
C)  In a cookie in the user's web browser

Question 17

What CloudSOC module should an administrator use to prevent the accidental and intentional exposure of information within cloud applications?

Accepted Answer

A)  Detect 
B)  Audit 
C)  Protect 
D)  Investigate 
A)  Detect 
B)  Audit 
C)  Protect 
D)  Investigate

Question 18

Of the methods that the ProxySG uses to detect file type, which one is usually the most accurate?

Accepted Answer

A)  Checking the HTTP content type (or MIME type) 
B)  Performing an anti-virus scan 
C)  Detecting apparent data type 
D)  Checking the file extension 
A)  Checking the HTTP content type (or MIME type) 
B)  Performing an anti-virus scan 
C)  Detecting apparent data type 
D)  Checking the file extension

Question 19

Refer to the exhibit. What modules are used by the use case "Identify and determine business risk of cloud applications being used within the organization"?

Accepted Answer

A)  Investigate 
B)  Audit and Investigate 
C)  Audit 
D)  Audit and Securlets 
A)  Investigate 
B)  Audit and Investigate 
C)  Audit 
D)  Audit and Securlets

Question 20

What policy should an administrator utilize to prevent users from downloading files from Box.com when they are outside the corporate IP range?

Accepted Answer

A)  File transfer 
B)  File sharing 
C)  Data exposure 
D)  Access enforcement 
A)  File transfer 
B)  File sharing 
C)  Data exposure 
D)  Access enforcement

What does each proxy service define? (Choose two.)

Why is Kerberos performance better than NTLM?

What module should an administrator utilize to view all the activities in cloud applications and conduct analysis?

What should an administrator do with a cloud application that does NOT meet the compliance requirements, but has mitigating controls available?

Where in the Management Console would you look to find all sessions that are being intercepted by the services framework of the ProxySG?

How does the Audit module get data?

Which CloudSOC module is similar to a Data Loss Prevention (DLP) system?

Refer to the exhibit. An administrator found several incidents like this in the Investigate module. What type of detector should an administrator modify to reduce the frequency of this type of incident?

What are three (3) main risks that CloudSOC solves in cloud applications?

What happens when the ProxySG bypasses traffic?

What is the objective of the Access Monitoring policy?

Which type of a policy can perform a user log out from Single Sign On?

Does the policy trace flag malfunctioning policy?

Which CloudSOC module is similar to an Intrusion Protection System (IPS)/Intrusion Detection System (IDS)?

Which of the following are always included in both the request and response headers?

Where are surrogate credentials stored?

What CloudSOC module should an administrator use to prevent the accidental and intentional exposure of information within cloud applications?

Of the methods that the ProxySG uses to detect file type, which one is usually the most accurate?

Refer to the exhibit. What modules are used by the use case "Identify and determine business risk of cloud applications being used within the organization"?

What policy should an administrator utilize to prevent users from downloading files from Box.com when they are outside the corporate IP range?

Administration of Symantec Endpoint Protection 14 (Broadcom)

Administration of Symantec Email Security.cloud (v1)

Administration of Symantec ProxySG 6.7

Symantec Messaging Gateway 10.5 Technical Assessment (Broadcom)

Filters

Exam 3: Administration of Symantec Data Loss Prevention 12 (Broadcom)

What does each proxy service define? (Choose two.)

Why is Kerberos performance better than NTLM?

What module should an administrator utilize to view all the activities in cloud applications and conduct analysis?

What should an administrator do with a cloud application that does NOT meet the compliance requirements, but has mitigating controls available?

Where in the Management Console would you look to find all sessions that are being intercepted by the services framework of the ProxySG?

How does the Audit module get data?

Which CloudSOC module is similar to a Data Loss Prevention (DLP) system?

Refer to the exhibit. An administrator found several incidents like this in the Investigate module. What type of detector should an administrator modify to reduce the frequency of this type of incident?

What are three (3) main risks that CloudSOC solves in cloud applications?

What happens when the ProxySG bypasses traffic?

What is the objective of the Access Monitoring policy?

Which type of a policy can perform a user log out from Single Sign On?

Does the policy trace flag malfunctioning policy?

Which CloudSOC module is similar to an Intrusion Protection System (IPS)/Intrusion Detection System (IDS)?

Which of the following are always included in both the request and response headers?

Where are surrogate credentials stored?

What CloudSOC module should an administrator use to prevent the accidental and intentional exposure of information within cloud applications?

Of the methods that the ProxySG uses to detect file type, which one is usually the most accurate?

Refer to the exhibit. What modules are used by the use case "Identify and determine business risk of cloud applications being used within the organization"?

What policy should an administrator utilize to prevent users from downloading files from Box.com when they are outside the corporate IP range?

Administration of Symantec Endpoint Protection 14 (Broadcom)

Administration of Symantec Email Security.cloud (v1)

Administration of Symantec ProxySG 6.7

Symantec Messaging Gateway 10.5 Technical Assessment (Broadcom)

Filters