VMware

Carbon Black Endpoint Detection and Response Technical Specialist

250-601

Validate your skills in endpoint detection with the 250-601 exam.

195 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 131–140 of 195

Q131

A company needs to identify endpoints exhibiting unusual behavior. What feature should they utilize?

  • A Behavioral EDR
  • B Static Analysis
  • C File Integrity Monitoring
  • D Network Traffic Analysis
Explanation Behavioral EDR identifies unusual behavior patterns, whereas others do not focus on behavior.
Q132

You are configuring Carbon Black to respond to threats. What happens when response settings are disabled?

  • A No alerts will be triggered
  • B Threats will be ignored
  • C Responses can't be executed
  • D System performance worsens
Explanation With response settings disabled, automated reactions to detected threats cannot occur, while alerts may still be generated.
Q133

Which service allows monitoring of application security in Carbon Black?

  • A Application Control
  • B Threat Intelligence
  • C Behavioral EDR
  • D Log Inspection
Explanation Behavioral EDR monitors application behavior for security.
Q134

A company needs to ensure seamless updates for all Carbon Black agents. What configuration should be arranged?

  • A Manual update initiation for each agent
  • B Scheduled deployment of agent updates
  • C Immediate uninstallation of old agents
  • D Consistent agent version checks
Explanation Scheduled deployments keep agents updated automatically.
Q135

What happens when a threat is detected on a host in Carbon Black?

  • A Immediate system shutdown occurs
  • B Alert generated with user notification
  • C Data is automatically deleted
  • D No actions taken without approval
Explanation An alert generates to inform about detected threats.
Q136

Which service does VMware Carbon Black use for threat intelligence?

  • A Threat Intelligence Cloud
  • B Security Operations Center
  • C Endpoint Security Suite
  • D Data Loss Prevention
Explanation Threat Intelligence Cloud aggregates and analyzes threat data, while others do not focus specifically on threat intelligence.
Q137

A company needs to maintain compliance with GDPR. Which feature of VMware Carbon Black is most helpful?

  • A Device Control
  • B Incident Response
  • C Application Control
  • D Data Encryption
Explanation Incident Response assists in identifying and mitigating data breaches, crucial for GDPR compliance; the others do not directly address compliance needs.
Q138

What happens when you enable Elastic Query in VMware Carbon Black?

  • A Disables machine learning functionalities
  • B Increases threat detection speed
  • C Allows direct query of endpoint data
  • D Enforces stricter firewall rules
Explanation Elastic Query allows direct querying of endpoint data for better analysis, while others do not relate to querying capabilities.
Q139

Which service in VMware Carbon Black provides real-time visibility into endpoints?

  • A Endpoint Detection and Response
  • B Threat Intelligence
  • C Network Security
  • D Cloud Storage
Explanation Endpoint Detection and Response enables real-time monitoring, while others don't focus on endpoint visibility.
Q140

A company needs to respond quickly to a detected threat. What feature of VMware Carbon Black should they use?

  • A Threat Hunting
  • B Custom Reports
  • C Remediation Workflows
  • D Endpoint Isolation
Explanation Remediation Workflows help automate response actions, unlike the other options which serve different purposes.