VMware

Carbon Black Cloud Technical Specialist

250-602

Get certified with the 250-602 exam focusing on Carbon Black Cloud solutions.

200 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 151–160 of 200

Q151

Which service in VMware Carbon Black Cloud is responsible for endpoint visibility?

  • A EDR
  • B NGAV
  • C Cloud Security
  • D Threat Intelligence
Explanation EDR (Endpoint Detection and Response) provides comprehensive visibility into endpoint activity, while the others serve different purposes.
Q152

A company needs to apply security policies on devices with different OS types. Which feature should they utilize?

  • A Policy Overrides
  • B Cross-Platform Policies
  • C Tagging Systems
  • D Role-Based Access
Explanation Cross-Platform Policies allow policies to be easily applied across different operating systems, while the others have different contexts.
Q153

What happens when a device configured with Carbon Black loses network connectivity?

  • A It stops reporting events.
  • B It continues operations as normal.
  • C It blocks all outbound traffic.
  • D It removes the agent.
Explanation The device continues its operations normally and collects events locally until connectivity is restored, while the other options are incorrect outcomes.
Q154

Which service allows integration with third-party security solutions?

  • A Cloud Security Alliance
  • B Carbon Black Cloud API
  • C VMware Horizon
  • D vSphere Update Manager
Explanation The Carbon Black Cloud API enables integration, while others do not.
Q155

A company needs real-time monitoring for endpoint threats. What should they configure?

  • A Remediation policies
  • B Threat intelligence feeds
  • C Continuous monitoring policies
  • D Incident remediation workflow
Explanation Continuous monitoring policies are necessary for real-time threat visibility.
Q156

What happens when a policy violation occurs in Carbon Black?

  • A All systems shut down immediately
  • B Notifications are sent to selected admins
  • C The agent automatically repairs the issue
  • D No action is taken by default
Explanation Notifications are sent to alert admins on policy violations; others are incorrect responses.
Q157

Which service provides real-time monitoring in Carbon Black Cloud?

  • A VMware Carbon Black Endpoint Detection
  • B VMware Hosting Services
  • C VMware CloudHealth Analytics
  • D VMware vCenter Operations Monitoring
Explanation Carbon Black Endpoint Detection offers continuous monitoring, while others don't.
Q158

A company needs to secure endpoints against ransomware. What feature should they enable in Carbon Black Cloud?

  • A Immediate Threat Response
  • B Firewall Management
  • C Malware Scanning
  • D Advanced Threat Detection
Explanation Advanced Threat Detection specifically addresses ransomware threats, unlike the others.
Q159

You are configuring policies for application control. What happens when an application is blocked in Carbon Black Cloud?

  • A Application will be automatically quarantined
  • B User will receive a notification
  • C All activity will be logged
  • D No action will be taken
Explanation Blocked applications are logged, but not automatically quarantined unless specified.
Q160

Which service provides threat intelligence in VMware Carbon Black Cloud?

  • A Threat Intelligence Service
  • B User Activity Monitoring
  • C Data Loss Prevention
  • D Firewall Management
Explanation The Threat Intelligence Service is designed for threat intelligence insights, while the others serve different purposes.