100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Sophos engineer exam|101 Complete Questions with Answers $10.49   Add to cart

Exam (elaborations)

Sophos engineer exam|101 Complete Questions with Answers

 8 views  0 purchase
  • Course
  • Institution

Sophos engineer exam|101 Complete Questions with Answers

Preview 2 out of 7  pages

  • March 3, 2024
  • 7
  • 2023/2024
  • Exam (elaborations)
  • Questions & answers
avatar-seller
Sophos engineer exam|101 Complete
Questions with Answers
That the cloned policy has been enforced - -You have cloned the threat
protection base policy, applied the policy to a group and saved it. When
checking the endpoint, the policy changes have not taken effect. What do
you check in the policy

-8190 - -Which TCP port is used to communicate policies to endpoint?

-To download updates from Sophos Central and store them on a dedicated
server on your network - -What is the function of an update cache?

-Download and run the installer from Sophos Central - -Which of the
following is a method of deploying endpoint protection?

-8191 - -Which TCP port is used to communicate Updates on endpoint?

-False - -A message relay can be configured on a Server without an Update
Cache.

-True - -When protecting a MAC client, you must know the password of the
administrator.

-Connects to a cloud server to check for the latest information about a file -
-What is the function of live protection?

-To block specific applications from running on protected endpoints - -Which
is the function of Application control?

-To connect Sophos security solutions in real time - -What is the function of
Sophos Synchronized Security?

-Control access to websites based on their category - -What is the function
of Web Control?

-To detect and stop compromised vulnerable applications - -What is the
function of anti-exploit technology?

-Exploit technique detection - -Which feature of intercept X is designed to
detect malware before it can execute?

-Data loss prevention rule - -You want to change an action for 'confidential'
content. Where in Sophos Central do you make this change

, -False - -Base policies can be disabled in Sophos Central.

-Threat Protection - -You are detecting low-reputation files and want to
change the reputation level from recommended to strict. Which policy do
you edit to make this change?

-Threat protection - -Which endpoint protection policy protects users
against malicious network traffic?

-True - -TRUE or FALSE: Tamper protection must be disabled before
removing Endpoint protection.

-Web Control - -Which endpoint protection policy do you edit to block users
from visiting a specific website category?

-Threat Protection - -Which endpoint protection policy block access to
malicious websites?

-False - -TRUE or FALSE: All Endpoints have the same endpoint password.

-Application Control - -Which feature allows you to restrict application?

-Check system requirement - -What is the first step you must take when
deploying virtual environments?

-Servers or server group - -Server policies are only applied to ....

-Files and registry entries - -Which 2 of the following are monitored when
File Integrity Monitoring is enabled?

-SVM (Security Virtual Machine) & Guest Virtual Machine (GVM) - -Which 2
components are required for protecting virtual environments?

-Avremove.log - -A Windows endpoint installation is failing. It is detecting
competitor software. Which log file do you check to investigate this issue?

-Audit log - -Which log provides a record of all activities?

-Automatic Clean up - -For most detections, which clean-up process is used
to clean up the detection?

-Isolate the computer - -A malicious file has been detected on an endpoint
and you want to prevent lateral movement through your network. From the
threat case, which action do you take?

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Victorious23. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $10.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

79373 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$10.49
  • (0)
  Add to cart