Go to 250-561 Questions - Try 250-561 dumps pdf [Q23-Q40]

Share

Go to 250-561 Questions - Try 250-561 dumps pdf

Dumps Practice Exam Questions Study Guide for the 250-561 Exam

NEW QUESTION # 23
An administrator must create a custom role in ICDm.
Which area of the management console is able to have access restricted or granted?

  • A. Custom Dashboard Creation
  • B. Policy Management
  • C. Agent deployment
  • D. Hybrid device management

Answer: C


NEW QUESTION # 24
Which policy should an administrator edit to utilize the Symantec LiveUpdate server for pre-release content?

  • A. The System Policy
  • B. The Firewall Policy
  • C. The System Schedule Policy
  • D. The LiveUpdate Policy

Answer: D


NEW QUESTION # 25
The ICDm has generated a blacklist task due to malicious traffic detection. Which SES component was utilized to make that detection?

  • A. Firewall
  • B. IPS
  • C. Antimalware
  • D. Reputation

Answer: C


NEW QUESTION # 26
Which default role has the most limited permission in the Integrated Cyber Defense Manager?

  • A. Limited Administrator
  • B. Restricted Administrator
  • C. Server Administrator
  • D. Endpoint Console Domain Administrator

Answer: C


NEW QUESTION # 27
Which two (2) options is an administrator able to use to prevent a file from being fasely detected (Select two)

  • A. Add the file to a Whitelist policy
  • B. Register the file with Symantec's False Positive database
  • C. Assign the file a SHA-256 cryptographic hash
  • D. Rename the file
  • E. Reduce the Intensive Protection setting of the Antimalware policy

Answer: A,B


NEW QUESTION # 28
An administrator learns of a potentially malicious file and wants to proactively prevent the file from ever being executed.
What should the administrator do?

  • A. Adjust the Antimalware policy age and prevalence settings
  • B. Increase the Antimalware policy Intensity to Level 5
  • C. Add the file SHA1 to a blacklist policy
  • D. Add the filename and SHA-256 hash to a Blacklist policy

Answer: A


NEW QUESTION # 29
Which two (2) steps should an administrator take to guard against re-occurring threats? (Select two)

  • A. Add endpoints to a high security group and assign a restrictive Antimalware policy to the group
  • B. Use Power Eraser to clean endpoint Windows registries
  • C. Confirm that daily active and weekly full scans take place on all endpoints
  • D. Verify that all endpoints receive scheduled Live-Update content
  • E. Quarantine affected endpoints

Answer: B,E


NEW QUESTION # 30
What is the frequency of feature updates with SES and the Integrated Cyber Defense Manager (ICDm)

  • A. Quarterly
  • B. Weekly
  • C. Bi-monthly
  • D. Monthly

Answer: B


NEW QUESTION # 31
What is the primary issue pertaining to managing roaming users while utilizing an on-premise solution?

  • A. The endpoint is more exposed to threats
  • B. The endpoint fails to receive content update
  • C. The endpoint is missing timely policy update
  • D. The endpoint is absent of the management console

Answer: B


NEW QUESTION # 32
Which two (2) scan range options are available to an administrator for locating unmanaged endpoints? (Select two)

  • A. IP range within network
  • B. Subnet Range
  • C. Entire Network
  • D. IP range within subnet
  • E. Entire Subnet

Answer: A,B


NEW QUESTION # 33
Which Antimalware technology is used after all local resources have been exhausted?

  • A. ITCS
  • B. Emulator
  • C. Sapient
  • D. Reputation

Answer: A


NEW QUESTION # 34
Which technique randomizes the e memory address map with Memory Exploit Mitigation?

  • A. SEHOP
  • B. ROPHEAP
  • C. ASLR
  • D. ForceDEP

Answer: C


NEW QUESTION # 35
Which report template type should an administrator utilize to create a daily summary of network threats detected?

  • A. Network Risk Report
  • B. Access Violation Report
  • C. Intrusion Prevention Report
  • D. Blocked Threats Report

Answer: B


NEW QUESTION # 36
Which security threat uses malicious code to destroy evidence, break systems, or encrypt data?

  • A. Discovery
  • B. Persistence
  • C. Execution
  • D. Impact

Answer: C


NEW QUESTION # 37
Which security control is complementary to IPS, providing a second layer of protection against network attacks?

  • A. Host Integrity
  • B. Firewall
  • C. Antimalware
  • D. Network Protection

Answer: D


NEW QUESTION # 38
An endpoint is offline, and the administrator issues a scan command. What happens to the endpoint when it restarts, if it lacks connectivity?

  • A. The system downloads the content without scanning.
  • B. The system scans after the content update is downloaded.
  • C. The system is scanning when started.
  • D. The system starts without scanning.

Answer: A


NEW QUESTION # 39
Which report template includes a summary of risk distribution by devices, users, and groups?

  • A. Comprehensive
  • B. Threat Distribution
  • C. Weekly
  • D. Device Integrity

Answer: B


NEW QUESTION # 40
......

Free Symantec SCS 250-561 Exam Question: https://www.fast2test.com/250-561-premium-file.html

250-561 Dumps with Practice Exam Questions Answers: https://drive.google.com/open?id=1nEpJZUKd5komA71TeL94W0SK62ypIV_-

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday

Support: Contact now 

日本語 Deutsch 繁体中文 한국어