SOPHOS ENGINEER ET80 - SOPHOS FIREWALL OVERVIEW 100% ACCURATE.

What is Zero Trust? - ANSWERIt is the mindset of don't trust anything verify everything What is ZTNA? - ANSWERSophos's Zero Trust Network Access What is Sophos Lateral Protection? - ANSWERIt is a micro segmentation solution. If device becomes infected it will be isolated to stop the attack or regardless of the Network Topology What are the three key features of Sophos Firewall? - ANSWERIt is a comprehensive security device, with a zone-based firewall and Identity-based policies at its core. It can expose hidden risk, stop unknown threats and isolate infected systems It supports ZTNA by providing network segmentation and lateral movement protection What are the phases of the Attack Kill Chain? - ANSWER1. Reconnaissance 2. Weaponization 3. Delivery 4. Exploitation 5. Installation 6. Command and control 7. Behaviour What happens in the Reconnaissance and Weaponization phases of the Attack Kill Chain? - ANSWERThe attacker will passively harvest email addresses and company information, before actively scanning the target environment using tools like port Scanners What does Advanced Threat Protection do? - ANSWERIt monitors all outgoing traffic and detects and blocks malicious outgoing traffic. This stops infected machines from contacting command and control centres. If this happens, and alert is recorded within the Control Centre of Sophos Firewall containing additional information to allow an Admin to clear the device up while the Firewall isolates the device to stop further infections across the network What happens in the Delivery phase of the Attack Kill Chain? - ANSWERThe attacker will access the estate to deliver the malicious payload via methods such as Email or social engineering to direct the victim to a malicious site What does Sophos Web Protection do? - ANSWERBy scanning http/https traffic for unwanted content and malware.