VMware

Carbon Black Cloud Technical Specialist

250-602

Get certified with the 250-602 exam focusing on Carbon Black Cloud solutions.

200 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 41–50 of 200

Q41

A company needs to automate incident response workflows. Which feature of VMware Carbon Black Cloud should they utilize?

  • A Remediation Workflows
  • B Endpoint Search
  • C Threat Intelligence Feeds
  • D User Activity Monitoring
Explanation Remediation Workflows automate incident response efficiently.
Q42

What happens when an organization enables Enhanced Policy Enforcement in Carbon Black?

  • A Stronger enforcement actions are taken
  • B Endpoint performance decreases significantly
  • C Network traffic is completely blocked
  • D No change occurs in policy execution
Explanation Enhanced Policy Enforcement increases action severity; others are incorrect outcomes.
Q43

Which service of VMware Carbon Black Cloud helps in detecting endpoint threats in real-time?

  • A Endpoint Detection and Response
  • B Network Traffic Analysis
  • C Threat Intelligence Feed
  • D Data Loss Prevention
Explanation Endpoint Detection and Response provides real-time threat detection and response services, while the others focus on different security aspects.
Q44

A company needs to ensure secure potential threat remediation. Which feature should they prioritize in VMware Carbon Black Cloud?

  • A Remote shell access
  • B Automated response playbooks
  • C Real-time traffic monitoring
  • D User behavior analytics
Explanation Automated response playbooks streamline threat remediation efforts, unlike the other options which serve different purposes.
Q45

What happens when an alert is raised in VMware Carbon Black Cloud and no action is taken?

  • A Alert is automatically resolved
  • B Threat persists potentially unattended
  • C User is notified immediately
  • D Incidents are removed from the dashboard
Explanation If no action is taken, the threat persists and may escalate, while the other options incorrectly imply resolution or response.
Q46

Which service in VMware Carbon Black Cloud offers real-time visibility into endpoint activity?

  • A Threat Hunting
  • B Device Control
  • C File Integrity Monitoring
  • D EDR
Explanation EDR provides real-time monitoring; others focus on specific controls.
Q47

A company needs to enforce application allowlisting on its endpoints. Which feature should they implement?

  • A Sensor Management
  • B Application Control
  • C Threat Detection
  • D Incident Response
Explanation Application Control ensures only approved applications run; other options don’t enforce allowlisting.
Q48

What happens when a detected threat is resolved in Carbon Black Cloud?

  • A Agent deletes the threat immediately
  • B Threat generates a report
  • C Threat is quarantined automatically
  • D Threat remains active until reboot
Explanation Resolved threats are typically quarantined, not deleted or left active.
Q49

Which service in VMware Carbon Black Cloud helps monitor system behaviors in real-time?

  • A Behavior Monitoring
  • B Threat Hunting
  • C Endpoint Detection
  • D Vulnerability Assessment
Explanation Behavior Monitoring tracks real-time system behaviors, identifying malicious activities.
Q50

A company needs to ensure its endpoints block unrecognized applications. Which Carbon Black feature should they enable?

  • A Watchlist
  • B Application Control
  • C Firewall Rules
  • D Threat Reports
Explanation Application Control ensures only approved applications run on the endpoints.