최신 250-441 무료덤프 - Symantec Administration of Symantec Advanced Threat Protection 3.0
Which level of privilege corresponds to each ATP account type?
Match the correct account type to the corresponding privileges.

Match the correct account type to the corresponding privileges.

정답:


What occurs when an endpoint fails its Host Integrity check and is unable to remediate?
정답: C
What does a Quarantine Firewall policy enable an ATP Administrator to do?
정답: D
Which stage of an Advanced Persistent Threat (APT) attack do attackers send information back to the home base?
정답: A
An Incident Responder is going to run an indicators of compromise (IOC) search on the endpoints and wants to use operators in the expression.
Which tokens accept one or more of the available operators when building an expression?
Which tokens accept one or more of the available operators when building an expression?
정답: C
While filling out the After Actions Report, an Incident Response Team noted that improved log monitoring could help detect future breaches.
What are two examples of how an organization can improve log monitoring to help detect future breaches?
(Choose two.)
What are two examples of how an organization can improve log monitoring to help detect future breaches?
(Choose two.)
정답: A,D
Which default port does ATP use to communicate with the Symantec Endpoint Protection Manager (SEPM) web services?
정답: A
Which two questions can an Incident Responder answer when analyzing an incident in ATP? (Choose two.)
정답: A,E
A large company has 150,000 endpoints with 12 SEP sites across the globe. The company now wants to implement ATP: Endpoint to improve their security. However, a consultant recently explained that the company needs to implement more than one ATP manager.
Why does the company need more than one ATP manager?
Why does the company need more than one ATP manager?
정답: A
An Incident Responder wants to create a timeline for a recent incident using Syslog in addition to ATP for the After Actions Report.
What are two reasons the responder should analyze the information using Syslog? (Choose two.)
What are two reasons the responder should analyze the information using Syslog? (Choose two.)
정답: C,D