VMware

Symantec Data Loss Prevention 16.x Administration Technical Specialist

250-587

Prepare for the 250-587 exam to demonstrate your expertise in Data Loss Prevention.

198 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 31–40 of 198

Q31

Which service is responsible for auditing DLP policies in Symantec DLP?

  • A Monitor Service
  • B Enforce Service
  • C Policy Service
  • D Audit Service
Explanation The Audit Service collects and manages the audit logs, while the other services focus on policy enforcement or monitoring.
Q32

A company needs to protect sensitive data on endpoints; which DLP feature should they implement first?

  • A Network Prevent for Email
  • B Endpoint Agent
  • C Web Prevent
  • D Cloud Storage Monitoring
Explanation The Endpoint Agent directly protects data on endpoints, whereas the other options cater to network or cloud scenarios.
Q33

What happens when a DLP incident is triggered but not configured to be managed?

  • A Incident is automatically resolved
  • B Incident goes unnoticed
  • C Incident appears in reports
  • D User is notified immediately
Explanation If not managed, incidents are logged but may not trigger alerts or actions, leading to them going unnoticed.
Q34

Which service is used for real-time monitoring in Symantec DLP?

  • A Data Insight
  • B Enforcement Server
  • C Communication Monitor
  • D Management Console
Explanation Communication Monitor enables real-time monitoring of data activities, while others serve different roles.
Q35

A company needs to enforce data protection on removable devices. Which policy component should they configure?

  • A Content Detection
  • B Endpoint Agent
  • C Email Monitoring
  • D Cloud Storage Rule
Explanation The Endpoint Agent is responsible for enforcing policies on removable devices, while the others relate to different data categories.
Q36

You are configuring user notifications for incident reports. What happens when an incident matches the criteria?

  • A Alert is sent only to admin
  • B User receives notification immediately
  • C Policy Block occurs only
  • D No action is taken
Explanation Users receive immediate notifications when incidents occur, while the other options either misrepresent the process or are inactive.
Q37

Which service in Symantec DLP monitors network traffic?

  • A Network Prevent
  • B Endpoint Prevent
  • C Data Insight
  • D Encryption Solution
Explanation Network Prevent monitors and prevents data loss over the network, while the other options focus on different data protection methods.
Q38

A company needs to prevent users from sending sensitive emails. What should they configure?

  • A Email DLP policies
  • B Web DLP policies
  • C Encryption at Rest
  • D Storage Classification
Explanation Email DLP policies specifically manage sensitive email transmissions, unlike Web DLP or other options.
Q39

You are configuring a DLP rule and need to exclude PDF files. What is the best practice?

  • A Use file type exclusions
  • B Adjust notification settings
  • C Disable all file scanning
  • D Whitelist PDF email addresses
Explanation Using file type exclusions directly addresses the need to exempt PDF files, while the other options do not achieve this objective.
Q40

Which service in Symantec DLP provides real-time monitoring of data movement?

  • A Network Monitor
  • B Storage Protection
  • C Endpoint Prevent
  • D Data Classification
Explanation Network Monitor tracks data in transit, while others focus on data at rest or classification.