250-605 시험 - Broadcom실제시험문제와 답 - 166문항

Question No : 1

Which two actions can be performed from the SEPM Reports page? (Choose two)

A.Generate historical charts of risk detections
B.Reassign clients to a different policy group
C.Save a report in PDF or CSV format
D.Initiate a LiveUpdate on all clients

정답:

Question No : 2

What is a common use case for implementing System Lockdown in a production environment?

A.Temporarily blocking traffic to external email servers
B.Testing new virus definitions
C.Ensuring that only business-critical applications are executed
D.Accelerating LiveUpdate download speed

정답:

Question No : 3

How does SEP apply Memory Exploit Mitigation to applications on a client system?

A.It automatically blocks all unknown memory accesses on launch
B.It uses a predefined list of supported applications and injection monitoring
C.It requires administrators to whitelist every executable manually
D.It uses scheduled scans to detect memory issues

정답:

Question No : 4

What action can you perform directly from the SEPM Clients view to respond to a detected threat on a specific endpoint?

A.Roll back to a previous policy version
B.Initiate an administrator-defined scan
C.Reset the user’s password
D.Format the local disk of the endpoint

정답:

Question No : 5

What is the timeout for the file deletion command in SEDR?

A.2 Days
B.7 Days
C.72 Hours
D.5 Days

정답:

Question No : 6

Which two functions are supported in the SEDR Management Console? (Choose two)

A.Policy deployment to SEP clients
B.Review and triage of threat incidents
C.Search endpoint activity recorder logs
D.Schedule OS patch updates

정답:

Question No : 7

Which step aligns with the "Respond" phase in the NIST Cybersecurity Framework when using SEDR?

A.Gathering DNS query data from clients
B.Identifying malicious executables
C.Isolating infected endpoints from the network
D.Exporting reports to regulatory bodies

정답:

Question No : 8

Which two pieces of information can be viewed when monitoring content distribution in SEPM? (Choose two)

A.The client's last successful content update time
B.The client's scheduled scan history
C.The version number of virus definitions on the client
D.The total storage capacity of the client machine

정답:

Question No : 9

When customizing virus scans for an enterprise environment, which SEP option allows admins to reduce scan duration while maintaining coverage?

A.Disable definitions for low-risk signatures
B.Limit scanning to user directories and system memory
C.Enable rootkit scanning only
D.Block all scripts by default

정답:

Question No : 10

When configuring the Intrusion Prevention Policy, which two options can be customized per signature? (Choose two)

A.Policy version rollback delay
B.Action taken (e.g., Block, Allow, Log only)
C.Definition file retention time
D.Notification alert generation

정답:

Question No : 11

What is the primary role of Symantec’s Insight Lookup feature in SEP?

A.To manage firewall rules for remote devices
B.To validate file reputations using global telemetry
C.To create device control policies for mobile users
D.To distribute definition updates

정답:

Question No : 12

How does policy inheritance function within SEPM client groups by default?

A.Policies are only inherited if clients are unmanaged
B.Child groups override all inherited policies automatically
C.Policies are inherited from the parent group unless explicitly overridden
D.Policy inheritance is disabled until manually enabled

정답:

Question No : 13

Which two mechanisms ensure secure communication between SEP clients and the SEPM? (Choose two)

A.Digital certificates exchanged during client-server registration
B.Shared registry keys between SEPM and client
C.Secure Sockets Layer (SSL) encryption over port 443
D.Token-based access control for client logins

정답:

Question No : 14

What best describes a core installation consideration for the SEDR appliance?

A.It must be installed on the same machine as SEPM
B.It requires a public IP for direct internet updates
C.It should be sized and placed to minimize latency from SEP clients
D.It can only be installed on Windows Server 2022

정답:

Question No : 15

When enabling System Lockdown, which file is essential to define the set of allowed applications?

A.Host Integrity Check File
B.Security Certificate File
C.File Fingerprint List
D.Exclusion Policy File

정답:

Broadcom 250-605 시험