Symantec Symantec Other Certification 250-437 Questions & Answers

• Question 21:

  What module should an administrator use to compare firewall logs to a database to identify risky cloud applications?

  A. Securlets

  B. Detect

  C. Protect

  D. Audit

  Correct Answer: D

  Reference: https://www.symantec.com/content/dam/symantec/docs/data-sheets/cloudsoc-audit-en.pdf

• Question 22:

  What Rule Type in ContentIQ profiles do business, computing, encryption, engineering, health, and legal belong to?

  A. Content types

  B. Custom dictionaries

  C. Keywords

  D. Risk types

  Correct Answer: A

  Reference: https://www.symantec.com/content/dam/symantec/docs/data-sheets/cloudsoc-casb-for-iaasen.pdf (p.4)

• Question 23:

  How should an administrator handle a cloud application that is business critical, but is NOT the most secure option?

  A. Sanction

  B. Monitor

  C. Block

  D. Review

  Correct Answer: B

  Reference: https://www.symantec.com/content/dam/symantec/docs/solution-briefs/shadow-it-discoverybest-practices-guide-en.pdf (p.13)

• Question 24:

  What Business Readiness Rating (BRR) category does the subcategory "HTTP Security Headers" belong to?

  A. Informational

  B. Service

  C. Administrative

  D. Data

  Correct Answer: D

  Reference: https://www.symantec.com/content/dam/symantec/docs/solution-briefs/shadow-it-discoverybest-practices-guide-en.pdf (p.8)

• Question 25:

  Refer to the exhibit. An administrator found several incidents like this in the Investigate module.

  What type of detector should an administrator modify to reduce the frequency of this type of incident?

  

  A. Threshold based

  B. Threats based

  C. Sequence based

  D. Behavior based

  Correct Answer: A

• Question 26:

  What Business Readiness Rating (BRR) category does the subcategory "User Audit Trail" belong to?

  A. Data

  B. Informational

  C. Administrative

  D. Business

  Correct Answer: C

  Reference: https://www.symantec.com/content/dam/symantec/docs/solution-briefs/shadow-it-discoverybest-practices-guide-en.pdf

• Question 27:

  What is the objective of the Access Enforcement policy?

  A. To notify an administrator when activities, such as objects being modified, are performed in a cloud application.

  B. To restrict the direct sharing of documents from cloud applications based both on their content and the characteristics of the user.

  C. To restrict the uploading and downloading of documents from the user's computer to the cloud application, based both on the content of the documents, and the characteristics of the user.

  D. To restrict user access to cloud applications not based on content, but based on the user's characteristics, such as devices and locations.

  Correct Answer: D

• Question 28:

  What module should an administrator utilize to view all the activities in cloud applications and conduct analysis?

  A. Audit

  B. Detect

  C. Protect

  D. Investigate

  Correct Answer: A

• Question 29:

  What is the objective of the File Transfer Policy?

  A. To restrict the uploading and downloading of documents from the user's computer to the cloud application, based both on the content of the documents, and the characteristics of the user.

  B. To restrict user access to cloud applications based on the user's characteristics, such as devices and locations.

  C. To prevent users from sharing documents, either publicly, externally, or internally.

  D. To notify an administrator when activities such as objects being modified, are performed in a cloud application.

  Correct Answer: A

• Question 30:

  What should an administrator use to identify document types specified by the user?

  A. Custom dictionaries

  B. Training profiles

  C. Risk types

  D. Content types

  Correct Answer: D