SOPHOS CERTIFIED ENGINEER EXAM 2023 ACCURATE
AND REAL EXAM QUESTIONS AND ANSWERS
GUARANTEED PASS|ALREADY GRADED A| EXPERT
VERIFIED
You want to prevent users from copying database files to USB drives without blocking the use of
all USB devices. Which policy do you need to configure?
Data Loss Prevention
TRUE or FALSE: You can search for a malicious item across your network using EDR
TRUE
Which log provides a record of all activities?
Audit log
What is the function of anti-exploit technology?
To detect and stop compromised vulnerable applications
Complete the sentence: The SAV32CLI clean-up tool is a...
Command line tool included in Sophos Central installation
When registering for a Sophos Central Trial, which of the following statements are TRUE?
You must use an email address that has not been used with Sophos Central before
Which tab on the device details page displays the tamper protection information?
SUMMARY
What is the function of Live Protection?
Connects to a cloud server to check for the latest information about a file
How long are activities stored for in the Enterprise Dashboard?
90 days
What is the function of an Update Cache?
To download updates from Sophos Central and store them on a dedicated server on your network
What is the function of on-access scanning?
Monitors running processes' behavior
, Which of the following alerts is categorized as a high alert?
Failed to protect an endpoint
Which dashboard allows you to manage and apply global settings to multiple Sophos Central
accounts?
The Partner Dashboard
Which detection feature can prevent attacks on the master boot record?
WipeGuard
What is the function of a Message Relay?
To enable all devices to communicate all policy and reporting data using a dedicated server on
your network
True or False: Marking an alert as acknowledge will resolve the threat on the endpoint.
FALSE
Which TCP port is used to communicate Updates on endpoints?
8191
TRUE or FALSE: The security VM installer is linked to your Sophos Central account.
FALSE
TRUE or FALSE: You can deploy an update cache without a Message Relay.
TRUE
You want to change an action for 'confidential' content. Where in Sophos Central do you make
this change?
In the Data Loss Prevention Rule
What does HIPS do on a protected endpoint?
Scans for potentially malicious behavior
Which TCP port is used to communicate policies to endpoints?
8190
Which Sophos Central manage product protects the data on a lost or stolen laptop?
Encryption
The option to stop the AutoUpdate service is greyed out in Windows Services. What is the most
likely reason for this?
Tamper Protection is enabled
AND REAL EXAM QUESTIONS AND ANSWERS
GUARANTEED PASS|ALREADY GRADED A| EXPERT
VERIFIED
You want to prevent users from copying database files to USB drives without blocking the use of
all USB devices. Which policy do you need to configure?
Data Loss Prevention
TRUE or FALSE: You can search for a malicious item across your network using EDR
TRUE
Which log provides a record of all activities?
Audit log
What is the function of anti-exploit technology?
To detect and stop compromised vulnerable applications
Complete the sentence: The SAV32CLI clean-up tool is a...
Command line tool included in Sophos Central installation
When registering for a Sophos Central Trial, which of the following statements are TRUE?
You must use an email address that has not been used with Sophos Central before
Which tab on the device details page displays the tamper protection information?
SUMMARY
What is the function of Live Protection?
Connects to a cloud server to check for the latest information about a file
How long are activities stored for in the Enterprise Dashboard?
90 days
What is the function of an Update Cache?
To download updates from Sophos Central and store them on a dedicated server on your network
What is the function of on-access scanning?
Monitors running processes' behavior
, Which of the following alerts is categorized as a high alert?
Failed to protect an endpoint
Which dashboard allows you to manage and apply global settings to multiple Sophos Central
accounts?
The Partner Dashboard
Which detection feature can prevent attacks on the master boot record?
WipeGuard
What is the function of a Message Relay?
To enable all devices to communicate all policy and reporting data using a dedicated server on
your network
True or False: Marking an alert as acknowledge will resolve the threat on the endpoint.
FALSE
Which TCP port is used to communicate Updates on endpoints?
8191
TRUE or FALSE: The security VM installer is linked to your Sophos Central account.
FALSE
TRUE or FALSE: You can deploy an update cache without a Message Relay.
TRUE
You want to change an action for 'confidential' content. Where in Sophos Central do you make
this change?
In the Data Loss Prevention Rule
What does HIPS do on a protected endpoint?
Scans for potentially malicious behavior
Which TCP port is used to communicate policies to endpoints?
8190
Which Sophos Central manage product protects the data on a lost or stolen laptop?
Encryption
The option to stop the AutoUpdate service is greyed out in Windows Services. What is the most
likely reason for this?
Tamper Protection is enabled
