VMware

Symantec Data Loss Prevention 16.x Administration Technical Specialist

250-587

Prepare for the 250-587 exam to demonstrate your expertise in Data Loss Prevention.

198 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 121–130 of 198

Q121

Which service in Symantec DLP is used for monitoring web traffic?

  • A Web Insight
  • B Network Prevent
  • C Cloud Storage Protect
  • D Data Classification
Explanation Network Prevent is specifically designed for monitoring and controlling web traffic; the others are not primarily focused on this area.
Q122

You are configuring a policy to block emails with sensitive data. Which criteria must be included in the policy?

  • A User role based access
  • B Sensitive Data Identifier
  • C Attachment size limit
  • D Email encryption type
Explanation Policies that block emails with sensitive data must include sensitive data identifiers, while the other options are unrelated to content monitoring.
Q123

A company needs to enforce data encryption for endpoints. What happens if encryption is not applied?

  • A No data loss occurs
  • B Access is automatically revoked
  • C Sensitive data may be exposed
  • D Hard drive space is increased
Explanation Without encryption, sensitive data may be exposed if endpoints are compromised; other options do not relate to the risks of missing encryption.
Q124

Which service in VMware DLP helps in detecting unencrypted sensitive data?

  • A Content Detection
  • B Endpoint Protection
  • C Policy Enforcement
  • D Network Monitoring
Explanation Content Detection identifies unencrypted sensitive data, while the others handle different aspects of data protection.
Q125

A company needs to monitor encrypted files to ensure compliance. Which feature should they utilize?

  • A Encryption Detection
  • B Policy Rules
  • C Incident Response
  • D File Shadowing
Explanation File Shadowing allows visibility into encrypted files, whereas the others do not directly monitor file encryption.
Q126

What happens when a DLP policy is set to 'Monitor' instead of 'Block'?

  • A Immediate data encryption
  • B Alerts are generated for violations
  • C Data transmission is stopped
  • D User access is automatically revoked
Explanation 'Monitor' mode generates alerts for violations but does not block data transmission like 'Block' mode.
Q127

Which service in Symantec DLP handles endpoint data protection?

  • A Endpoint Prevent
  • B Network Prevent
  • C Cloud Security
  • D Email Security
Explanation Endpoint Prevent specializes in protecting data on endpoints; the others focus on network, cloud, or email.
Q128

A company needs to block certain file types from being emailed. What should they configure?

  • A Remediation policies
  • B File type detection policies
  • C Endpoint agents
  • D Encryption policies
Explanation File type detection policies will specifically block unwanted file types; other options do not selectively block files.
Q129

What happens when a DLP detection rule is configured with overlapping conditions?

  • A Only the first condition is checked
  • B All conditions are ignored
  • C A conflict error occurs
  • D The most restrictive condition applies
Explanation The most restrictive condition takes precedence; the other options do not reflect correct behavior.
Q130

Which service provides centralized management in Symantec DLP?

  • A Data Loss Prevention Manager
  • B Endpoint Detection Service
  • C Security Information Analysis
  • D Network Traffic Analyzer
Explanation The Data Loss Prevention Manager centralizes controls, unlike the other options.