
Go to 250-561 Questions - Try 250-561 dumps pdf
Dumps Practice Exam Questions Study Guide for the 250-561 Exam
NEW QUESTION # 23
An administrator must create a custom role in ICDm.
Which area of the management console is able to have access restricted or granted?
- A. Custom Dashboard Creation
- B. Policy Management
- C. Agent deployment
- D. Hybrid device management
Answer: C
NEW QUESTION # 24
Which policy should an administrator edit to utilize the Symantec LiveUpdate server for pre-release content?
- A. The System Policy
- B. The Firewall Policy
- C. The System Schedule Policy
- D. The LiveUpdate Policy
Answer: D
NEW QUESTION # 25
The ICDm has generated a blacklist task due to malicious traffic detection. Which SES component was utilized to make that detection?
- A. Firewall
- B. IPS
- C. Antimalware
- D. Reputation
Answer: C
NEW QUESTION # 26
Which default role has the most limited permission in the Integrated Cyber Defense Manager?
- A. Limited Administrator
- B. Restricted Administrator
- C. Server Administrator
- D. Endpoint Console Domain Administrator
Answer: C
NEW QUESTION # 27
Which two (2) options is an administrator able to use to prevent a file from being fasely detected (Select two)
- A. Add the file to a Whitelist policy
- B. Register the file with Symantec's False Positive database
- C. Assign the file a SHA-256 cryptographic hash
- D. Rename the file
- E. Reduce the Intensive Protection setting of the Antimalware policy
Answer: A,B
NEW QUESTION # 28
An administrator learns of a potentially malicious file and wants to proactively prevent the file from ever being executed.
What should the administrator do?
- A. Adjust the Antimalware policy age and prevalence settings
- B. Increase the Antimalware policy Intensity to Level 5
- C. Add the file SHA1 to a blacklist policy
- D. Add the filename and SHA-256 hash to a Blacklist policy
Answer: A
NEW QUESTION # 29
Which two (2) steps should an administrator take to guard against re-occurring threats? (Select two)
- A. Add endpoints to a high security group and assign a restrictive Antimalware policy to the group
- B. Use Power Eraser to clean endpoint Windows registries
- C. Confirm that daily active and weekly full scans take place on all endpoints
- D. Verify that all endpoints receive scheduled Live-Update content
- E. Quarantine affected endpoints
Answer: B,E
NEW QUESTION # 30
What is the frequency of feature updates with SES and the Integrated Cyber Defense Manager (ICDm)
- A. Quarterly
- B. Weekly
- C. Bi-monthly
- D. Monthly
Answer: B
NEW QUESTION # 31
What is the primary issue pertaining to managing roaming users while utilizing an on-premise solution?
- A. The endpoint is more exposed to threats
- B. The endpoint fails to receive content update
- C. The endpoint is missing timely policy update
- D. The endpoint is absent of the management console
Answer: B
NEW QUESTION # 32
Which two (2) scan range options are available to an administrator for locating unmanaged endpoints? (Select two)
- A. IP range within network
- B. Subnet Range
- C. Entire Network
- D. IP range within subnet
- E. Entire Subnet
Answer: A,B
NEW QUESTION # 33
Which Antimalware technology is used after all local resources have been exhausted?
- A. ITCS
- B. Emulator
- C. Sapient
- D. Reputation
Answer: A
NEW QUESTION # 34
Which technique randomizes the e memory address map with Memory Exploit Mitigation?
- A. SEHOP
- B. ROPHEAP
- C. ASLR
- D. ForceDEP
Answer: C
NEW QUESTION # 35
Which report template type should an administrator utilize to create a daily summary of network threats detected?
- A. Network Risk Report
- B. Access Violation Report
- C. Intrusion Prevention Report
- D. Blocked Threats Report
Answer: B
NEW QUESTION # 36
Which security threat uses malicious code to destroy evidence, break systems, or encrypt data?
- A. Discovery
- B. Persistence
- C. Execution
- D. Impact
Answer: C
NEW QUESTION # 37
Which security control is complementary to IPS, providing a second layer of protection against network attacks?
- A. Host Integrity
- B. Firewall
- C. Antimalware
- D. Network Protection
Answer: D
NEW QUESTION # 38
An endpoint is offline, and the administrator issues a scan command. What happens to the endpoint when it restarts, if it lacks connectivity?
- A. The system downloads the content without scanning.
- B. The system scans after the content update is downloaded.
- C. The system is scanning when started.
- D. The system starts without scanning.
Answer: A
NEW QUESTION # 39
Which report template includes a summary of risk distribution by devices, users, and groups?
- A. Comprehensive
- B. Threat Distribution
- C. Weekly
- D. Device Integrity
Answer: B
NEW QUESTION # 40
......
Free Symantec SCS 250-561 Exam Question: https://www.fast2test.com/250-561-premium-file.html
250-561 Dumps with Practice Exam Questions Answers: https://drive.google.com/open?id=1nEpJZUKd5komA71TeL94W0SK62ypIV_-