Sophos Endpoint and Server - engineer
reviewer
In the Data Loss Prevention Rule - answerYou want to change an action for
'confidential' content.
Where in Sophos Central do you make this change?
Modifying protection settings and uninstalling the endpoint agent - answerTwo of the
following that tamper protection prevent users from doing
Installed components - answerAn endpoint is reporting that Sophos Autoupdate is not
installed.
In the Self-Help Tool which tab do you check to view whether AutoUpdate is listed as
Installed?
Threat Protection - answerIn which policy do you enable device isolation?
To connect Sophos security solutions in real time - answerWhat is the function of
Sophos Synchronized Security?
Super Admin - answerWhat is the minimum administrative role that will allow a user to
manage user roles and role assignments
previously detected malware characteristics - answerSignature-based file scanning
relies on....
Help desk - answerMinimum administrative role that will allow a user to scan endpoints
True - answerTamper protection is enabled by default
Exclusions tab and global settings - answer2 places in Sophos Central do you add
exclusions for servers?
Threat Protection - answerYou want to mitigate exploits in vulnerable applications.
Which policy do you enable the features in?
Download and run the installer from Sophos Central - answerA method of deploying
endpoint protection?
Machine learning - answerIs a pre-execution check performed by Intercept X?
, Exploit technique detection - answerWhich feature of Intercept X is designed to detect
malware before it can execute?
Policy Enforced - answerYou have created a new policy
Which tab do you select to enable the policy?
Ransomware - answerWhich security threat does Intercept X protect against?
Admin - answerWhat is the minimum administrative role that will allow a user to create
and edit policies
True - answerWhen protecting a Mac client, you must know the password of the
administrator
Check the system requirements - answerWhat is the first step you must take when
deploying virtual environments?
8190 - answerWhich TCP port is used to communicate policies to endpoints?
True - answerTamper protection must be disabled before removing Endpoint Protection.
Files and Registry Entries - answerTwo of the following are monitored when File
Integrity Monitoring is enabled
Web control - answerWhich endpoint protection policy do you edit to block users from
visiting a specific website category
Give the user administrator rights to the endpoint and provide the user with the tamper
protection password - answerYou need to give a user access to change their protection
settings in an emergency
Which 2 of the following allow you to do this?
To prevent the use of removable media on protected endpoints - answerWhat is the
function of Peripheral Control?
False - answerDeleting an endpoint Sophos Central will remove the Endpoint agent
from the endpoint.
To detect and stop compromised vulnerable applications - answerWhat is the function
of anti-exploit technology?
Command line tool included in Sophos Central installation - answerThe SAV32CLI
clean up tool is a....
reviewer
In the Data Loss Prevention Rule - answerYou want to change an action for
'confidential' content.
Where in Sophos Central do you make this change?
Modifying protection settings and uninstalling the endpoint agent - answerTwo of the
following that tamper protection prevent users from doing
Installed components - answerAn endpoint is reporting that Sophos Autoupdate is not
installed.
In the Self-Help Tool which tab do you check to view whether AutoUpdate is listed as
Installed?
Threat Protection - answerIn which policy do you enable device isolation?
To connect Sophos security solutions in real time - answerWhat is the function of
Sophos Synchronized Security?
Super Admin - answerWhat is the minimum administrative role that will allow a user to
manage user roles and role assignments
previously detected malware characteristics - answerSignature-based file scanning
relies on....
Help desk - answerMinimum administrative role that will allow a user to scan endpoints
True - answerTamper protection is enabled by default
Exclusions tab and global settings - answer2 places in Sophos Central do you add
exclusions for servers?
Threat Protection - answerYou want to mitigate exploits in vulnerable applications.
Which policy do you enable the features in?
Download and run the installer from Sophos Central - answerA method of deploying
endpoint protection?
Machine learning - answerIs a pre-execution check performed by Intercept X?
, Exploit technique detection - answerWhich feature of Intercept X is designed to detect
malware before it can execute?
Policy Enforced - answerYou have created a new policy
Which tab do you select to enable the policy?
Ransomware - answerWhich security threat does Intercept X protect against?
Admin - answerWhat is the minimum administrative role that will allow a user to create
and edit policies
True - answerWhen protecting a Mac client, you must know the password of the
administrator
Check the system requirements - answerWhat is the first step you must take when
deploying virtual environments?
8190 - answerWhich TCP port is used to communicate policies to endpoints?
True - answerTamper protection must be disabled before removing Endpoint Protection.
Files and Registry Entries - answerTwo of the following are monitored when File
Integrity Monitoring is enabled
Web control - answerWhich endpoint protection policy do you edit to block users from
visiting a specific website category
Give the user administrator rights to the endpoint and provide the user with the tamper
protection password - answerYou need to give a user access to change their protection
settings in an emergency
Which 2 of the following allow you to do this?
To prevent the use of removable media on protected endpoints - answerWhat is the
function of Peripheral Control?
False - answerDeleting an endpoint Sophos Central will remove the Endpoint agent
from the endpoint.
To detect and stop compromised vulnerable applications - answerWhat is the function
of anti-exploit technology?
Command line tool included in Sophos Central installation - answerThe SAV32CLI
clean up tool is a....
