Sophos Endpoint and Server - Engineer
Reviewer Exam With 100% Correct
Answers 2024
In the Data Loss Prevention Rule - Correct Answer-You want to change an action for
'confidential' content.
Where in Sophos Central do you make this change?
Modifying protection settings and uninstalling the endpoint agent - Correct Answer-Two
of the following that tamper protection prevent users from doing
Installed components - Correct Answer-An endpoint is reporting that Sophos
Autoupdate is not installed.
In the Self-Help Tool which tab do you check to view whether AutoUpdate is listed as
Installed?
Threat Protection - Correct Answer-In which policy do you enable device isolation?
To connect Sophos security solutions in real time - Correct Answer-What is the function
of Sophos Synchronized Security?
Super Admin - Correct Answer-What is the minimum administrative role that will allow a
user to manage user roles and role assignments
previously detected malware characteristics - Correct Answer-Signature-based file
scanning relies on....
Help desk - Correct Answer-Minimum administrative role that will allow a user to scan
endpoints
True - Correct Answer-Tamper protection is enabled by default
Exclusions tab and global settings - Correct Answer-2 places in Sophos Central do you
add exclusions for servers?
Threat Protection - Correct Answer-You want to mitigate exploits in vulnerable
applications.
Which policy do you enable the features in?
, Download and run the installer from Sophos Central - Correct Answer-A method of
deploying endpoint protection?
Machine learning - Correct Answer-Is a pre-execution check performed by Intercept X?
Exploit technique detection - Correct Answer-Which feature of Intercept X is designed to
detect malware before it can execute?
Policy Enforced - Correct Answer-You have created a new policy
Which tab do you select to enable the policy?
Ransomware - Correct Answer-Which security threat does Intercept X protect against?
Admin - Correct Answer-What is the minimum administrative role that will allow a user
to create and edit policies
True - Correct Answer-When protecting a Mac client, you must know the password of
the administrator
Check the system requirements - Correct Answer-What is the first step you must take
when deploying virtual environments?
8190 - Correct Answer-Which TCP port is used to communicate policies to endpoints?
True - Correct Answer-Tamper protection must be disabled before removing Endpoint
Protection.
Files and Registry Entries - Correct Answer-Two of the following are monitored when
File Integrity Monitoring is enabled
Web control - Correct Answer-Which endpoint protection policy do you edit to block
users from visiting a specific website category
Give the user administrator rights to the endpoint and provide the user with the tamper
protection password - Correct Answer-You need to give a user access to change their
protection settings in an emergency
Which 2 of the following allow you to do this?
To prevent the use of removable media on protected endpoints - Correct Answer-What
is the function of Peripheral Control?
False - Correct Answer-Deleting an endpoint Sophos Central will remove the Endpoint
agent from the endpoint.
Reviewer Exam With 100% Correct
Answers 2024
In the Data Loss Prevention Rule - Correct Answer-You want to change an action for
'confidential' content.
Where in Sophos Central do you make this change?
Modifying protection settings and uninstalling the endpoint agent - Correct Answer-Two
of the following that tamper protection prevent users from doing
Installed components - Correct Answer-An endpoint is reporting that Sophos
Autoupdate is not installed.
In the Self-Help Tool which tab do you check to view whether AutoUpdate is listed as
Installed?
Threat Protection - Correct Answer-In which policy do you enable device isolation?
To connect Sophos security solutions in real time - Correct Answer-What is the function
of Sophos Synchronized Security?
Super Admin - Correct Answer-What is the minimum administrative role that will allow a
user to manage user roles and role assignments
previously detected malware characteristics - Correct Answer-Signature-based file
scanning relies on....
Help desk - Correct Answer-Minimum administrative role that will allow a user to scan
endpoints
True - Correct Answer-Tamper protection is enabled by default
Exclusions tab and global settings - Correct Answer-2 places in Sophos Central do you
add exclusions for servers?
Threat Protection - Correct Answer-You want to mitigate exploits in vulnerable
applications.
Which policy do you enable the features in?
, Download and run the installer from Sophos Central - Correct Answer-A method of
deploying endpoint protection?
Machine learning - Correct Answer-Is a pre-execution check performed by Intercept X?
Exploit technique detection - Correct Answer-Which feature of Intercept X is designed to
detect malware before it can execute?
Policy Enforced - Correct Answer-You have created a new policy
Which tab do you select to enable the policy?
Ransomware - Correct Answer-Which security threat does Intercept X protect against?
Admin - Correct Answer-What is the minimum administrative role that will allow a user
to create and edit policies
True - Correct Answer-When protecting a Mac client, you must know the password of
the administrator
Check the system requirements - Correct Answer-What is the first step you must take
when deploying virtual environments?
8190 - Correct Answer-Which TCP port is used to communicate policies to endpoints?
True - Correct Answer-Tamper protection must be disabled before removing Endpoint
Protection.
Files and Registry Entries - Correct Answer-Two of the following are monitored when
File Integrity Monitoring is enabled
Web control - Correct Answer-Which endpoint protection policy do you edit to block
users from visiting a specific website category
Give the user administrator rights to the endpoint and provide the user with the tamper
protection password - Correct Answer-You need to give a user access to change their
protection settings in an emergency
Which 2 of the following allow you to do this?
To prevent the use of removable media on protected endpoints - Correct Answer-What
is the function of Peripheral Control?
False - Correct Answer-Deleting an endpoint Sophos Central will remove the Endpoint
agent from the endpoint.
