HBSS 501 UPDATED ACTUAL Questions and CORRECT Answers
1. CND Services include Prepare; Protect and Respond
2. What action should be taken if an event is found to be Start the tuning process
a false positive?
3. Which product is responsible for collecting endpoint McAfee Agent
properties and policy enforcement?
4. What is the correct order for prioritizing events? Severity; Action Taken; Vol-
ume
5. An admin creates to manage the software Policies
installed on the endpoint.
6. Which HIPS label shows the friendly name of a HIPS Signature Name (Host IPS)
event?
7. Which of the following is not true about ArcSight and Prevention
situational awareness?
8. In order to manage an endpoint; must be McAfee Agent
installed.
9. A dashboard is a collection of shown togeth- Monitors
er in the same location.
10. Which VSE label shows the friendly name of a VSE Threat Name
event?
11. Which feature does HIPS and VSE both have in com- Buffer Overflow Protection
mon but is disabled on one when both are installed on
the same endpoint?
12. Threat Type
1. CND Services include Prepare; Protect and Respond
2. What action should be taken if an event is found to be Start the tuning process
a false positive?
3. Which product is responsible for collecting endpoint McAfee Agent
properties and policy enforcement?
4. What is the correct order for prioritizing events? Severity; Action Taken; Vol-
ume
5. An admin creates to manage the software Policies
installed on the endpoint.
6. Which HIPS label shows the friendly name of a HIPS Signature Name (Host IPS)
event?
7. Which of the following is not true about ArcSight and Prevention
situational awareness?
8. In order to manage an endpoint; must be McAfee Agent
installed.
9. A dashboard is a collection of shown togeth- Monitors
er in the same location.
10. Which VSE label shows the friendly name of a VSE Threat Name
event?
11. Which feature does HIPS and VSE both have in com- Buffer Overflow Protection
mon but is disabled on one when both are installed on
the same endpoint?
12. Threat Type
