VMware

Symantec Data Loss Prevention 16.x Administration Technical Specialist

250-587

Prepare for the 250-587 exam to demonstrate your expertise in Data Loss Prevention.

198 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 141–150 of 198

Q141

What happens when a detected incident is escalated in DLP?

  • A Data is deleted from the system
  • B Notification sent to the security team
  • C No relevant action taken
  • D Endpoint is automatically locked
Explanation Escalating an incident typically results in notifications to the security team for further action, unlike the other options.
Q142

Which service does Symantec DLP use for data discovery?

  • A Endpoint Detection Service
  • B Network Monitoring Service
  • C Data Insight Service
  • D Data Classification Service
Explanation Data Insight Service provides comprehensive data discovery capabilities, whereas the others focus on security monitoring or classification.
Q143

A company needs to prevent the use of unapproved applications on company devices. Which DLP feature should they configure?

  • A Endpoint Data Loss Prevention
  • B Behavioral Policy
  • C Network DLP
  • D Content Inspection
Explanation Endpoint Data Loss Prevention specifically manages application use, while the others address data transfer or content.
Q144

You are configuring a policy that detects credit card information. What happens when a violation is detected in a monitored email?

  • A Email is automatically deleted.
  • B User receives a warning only.
  • C Email is quarantined for review.
  • D Data is automatically encrypted.
Explanation When a violation is detected, typically the email is quarantined for review, unlike other options which misrepresent DLP behavior.
Q145

Which service is essential for monitoring data channel activity in Symantec DLP?

  • A Data Insight
  • B Data Loss Prevention
  • C Endpoint Protection
  • D Information Risk Management
Explanation Data Insight analyzes and monitors data usage; the other options do not specifically focus on monitoring data channels.
Q146

A company needs to prevent users from copying sensitive documents to USB drives. What should they do?

  • A Implement endpoint DLP policies
  • B Use data backup solutions
  • C Limit user access to drives
  • D Remove USB ports from devices
Explanation Implementing endpoint DLP policies specifically targets preventing data transfers to unauthorized devices, while the others do not directly stop copying sensitive documents.
Q147

What happens when a DLP policy is set to 'monitor' mode?

  • A Data theft is actively blocked
  • B Alerts are generated for incidents
  • C Nothing happens until enforcement is set
  • D All files are encrypted automatically
Explanation In monitor mode, policies generate alerts without blocking, while the other options do not accurately describe monitoring behavior.
Q148

Which service in Symantec DLP is responsible for monitoring network traffic?

  • A Network Monitor
  • B Endpoint Protector
  • C Email Prevention
  • D Data Insight
Explanation Network Monitor specifically analyzes network traffic, while others focus on endpoints or emails.
Q149

A company needs to prevent sensitive data from leaving via USB devices. What should they enable?

  • A Endpoint Policies
  • B Network Discovery
  • C Email DLP
  • D Web Security
Explanation Endpoint Policies are designed for controlling data transfer via devices like USBs.
Q150

What happens when a policy is in 'Test' mode?

  • A Blocks data instantly
  • B Sends alerts only
  • C Does not log events
  • D Requires user confirmation
Explanation 'Test' mode generates alerts without blocking or logging any data actions.