VMware

Symantec Data Loss Prevention 16.x Administration Technical Specialist

250-587

Prepare for the 250-587 exam to demonstrate your expertise in Data Loss Prevention.

198 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 111–120 of 198

Q111

You are configuring a DLP policy and need to exclude a specific employee's files. What setting should you use?

  • A Sensitive Data Exclusion
  • B User Exemption Rule
  • C Data Retention Policy
  • D File Type Enforcement
Explanation The User Exemption Rule allows exclusion of specific employees, whereas the other options do not specifically address user-based exclusions.
Q112

Which service in Symantec DLP is responsible for monitoring network traffic?

  • A Network Monitoring Service
  • B Endpoint Protection Service
  • C Policy Management Service
  • D Data Classification Service
Explanation The Network Monitoring Service actively inspects traffic, while others serve different roles in DLP management.
Q113

A company needs to detect the transfer of sensitive data via email. Which DLP feature should they configure?

  • A Content Inspection
  • B Endpoint Blocking
  • C Network Enforcement
  • D User Activity Monitoring
Explanation Content Inspection examines email content for sensitive data, unlike others that focus on different aspects.
Q114

What happens when a violation is detected but no policy action is configured?

  • A Incident is logged and ignored
  • B Email is sent to the user
  • C Transfer is allowed silently
  • D DLP service shuts down
Explanation Without an action, the incident is logged but not acted upon, while the others suggest actions that aren't possible.
Q115

Which feature in Symantec DLP allows users to specifically block certain file types from being shared externally?

  • A File type blocking
  • B Endpoint protection
  • C Network discovery
  • D Incident Management
Explanation File type blocking allows precise control over blocked files, while others do not specifically handle file types.
Q116

A company needs to ensure its email communications are monitored for sensitive data loss. What should they configure?

  • A Email Gateway Detection
  • B Web Monitoring
  • C Removable Storage policies
  • D Data Inventory
Explanation Email Gateway Detection specifically monitors and protects email traffic for sensitive data, unlike the other options.
Q117

You are configuring Data Identifier for a new sensitive data type. What will happen if you set a very loose pattern match?

  • A Increased false positives
  • B Fine-grained detection
  • C Better user experience
  • D Faster scanning times
Explanation A loose pattern match leads to higher false positives, impacting detection accuracy contrary to the benefits implied by others.
Q118

Which service is primarily responsible for monitoring data leaks in Symantec DLP?

  • A Data Loss Prevention Console
  • B Endpoint Protection Manager
  • C Network Monitor Service
  • D Information Security Service
Explanation The Data Loss Prevention Console provides comprehensive monitoring and management of data leaks, while the others serve different security functions.
Q119

A company needs to restrict emails containing sensitive financial information. What should they configure in Symantec DLP?

  • A Policy rules for Email Protection
  • B User authentication protocols
  • C Data discovery tasks
  • D Search indexing settings
Explanation Policy rules for Email Protection specifically address how sensitive information is handled in emails, while the other options do not directly apply to email restrictions.
Q120

You are configuring a data discovery scan in Symantec DLP. What happens when you set the scan frequency to 'Daily'?

  • A It scans once a day at random times.
  • B It scans continuously throughout the day.
  • C It only scans on weekends.
  • D It scans once every 24 hours.
Explanation Setting the frequency to 'Daily' schedules a scan to occur once every 24 hours, as opposed to random or continuous scanning.