250-441 무료 덤프문제 온라인 액세스

An organization is considering an ATP: Endpoint and Network deployment with multiple appliances.
Which form factor will be the most effective in terms of performance and costs?

• A.Virtual for management, physical for the network scanners and ATP: Endpoint
• B.Virtual for management and ATP: Endpoint, physical for the network scanners
• C.Physical for management and ATP: Endpoint, virtual for the network scanners
• D.Virtual for management, ATP: Endpoint, and the network scanners

Which SEP technology does an Incident Responder need to enable in order to enforce blacklisting on an endpoint?

• A.SONAR
• B.System Lockdown
• C.Intrusion Prevention System
• D.Firewall

Which two actions can an Incident Responder take in the Cynic portal? (Choose two.)

• A.Submit false positive and false negative files
• B.Submit hashes to Insight
• C.Configure email reports on convictions
• D.Configure a SIEM feed from the portal to the ATP environment
• E.Query hashes

Which endpoint detection method allows for information about triggered processes to be displayed in ATP?

• A.SONAR
• B.System Lockdown
• C.Antivirus
• D.Insight

Which threat is an example of an Advanced Persistent Threat (APT)?

• A.Conficker
• B.MyDoom
• C.GhostNet
• D.ILOVEYOU