Sophos Endpoint and Server - engineer reviewer Exam Questions With 100% Correct Answers

Sophos Endpoint and Server - engineer reviewer Exam Questions With 100% Correct Answers You want to change an action for 'confidential' content. Where in Sophos Central do you make this change? - answerIn the Data Loss Prevention Rule Two of the following that tamper protection prevent users from doing - answerModifying protection settings and uninstalling the endpoint agent An endpoint is reporting that Sophos Autoupdate is not installed. In the Self-Help Tool which tab do you check to view whether AutoUpdate is listed as Installed? - answerInstalled components In which policy do you enable device isolation? - answerThreat Protection What is the function of Sophos Synchronized Security? - answerTo connect Sophos security solutions in real time What is the minimum administrative role that will allow a user to manage user roles and role assignments - answerSuper Admin Signature-based file scanning relies on.... - answerpreviously detected malware characteristics Minimum administrative role that will allow a user to scan endpoints - answerHelp desk Tamper protection is enabled by default - answerTrue 2 places in Sophos Central do you add exclusions for servers? - answerExclusions tab and global settings You want to mitigate exploits in vulnerable applications. Which policy do you enable the features in? - answerThreat Protection A method of deploying endpoint protection? - answerDownload and run the installer from Sophos Central Is a pre-execution check performed by Intercept X? - answerMachine learning Which feature of Intercept X is designed to detect malware before it can execute? - answerExploit technique detection You have created a new policy Which tab do you select to enable the policy? - answerPolicy Enforced Which security threat does Intercept X protect against? - answerRansomware What is the minimum administrative role that will allow a user to create and edit policies - answerAdmin When protecting a Mac client, you must know the password of the administrator - answerTrue What is the first step you must take when deploying virtual environments? - answerCheck the system requirements Which TCP port is used to communicate policies to endpoints? - answer8190 Tamper protection must be disabled before removing Endpoint Protection. - answerTrue Two of the following are monitored when File Integrity Monitoring is enabled - answerFiles and Registry Entries Which endpoint protection policy do you edit to block users from visiting a specific website category - answerWeb control You need to give a user access to change their protection settings in an emergency Which 2 of the following allow you to do this? - answerGive the user administrator rights to the endpoint and provide the user with the tamper protection password What is the function of Peripheral Control? - answerTo prevent the use of removable media on protected endpoints Deleting an endpoint Sophos Central will remove the Endpoint agent from the endpoint. - answerFalse