Zscaler EDU 200 - Essentials – ZDTA
Actual Exam Questions With Reviewed
100% Correct Detailed Answers
Guaranteed Pass!!
1. How are Newly Observed Domains (NODs) different than Newly Registered
Domains (NRDs)? - ANSWER NRDs were registered recently, whereas
NODs may have been registered some time ago but have never been
observed with actual clients visiting them, which makes them suspicious
2. What is the Zscaler Page Risk score? - ANSWER The Page Risk score is a
slider on the Advanced Threat Protection configuration page, which allows a
user to pre-select what level of risk they are comfortable with on particular
websites; the risk itself is computed on a scale of 0-100 by looking at several
factors including the top-level domain, the user agent, whether certain
HTTP headers are missing, whether a high-entropy domain name is being
used, and several other factors
3. What is Ransomware? - ANSWER Malware that steals data and
encrypts it
4. Once a phishing attack occurs and a user is directed to malicious content,
which of the following typically occurs? - ANSWER One or more files
are downloaded, with the attacker also attempting to download secondary
payloads onto the user's machine
,The establishing of an outbound connection from the user's device using an
outbound command and control channel to an adversaries' infrastructure
Full control over the endpoint by the adversary
5. What is Zscaler ThreatLabZ? - ANSWER A best-in-class security threat
research team of more than 100+ security researchers who analyze security
trends and help keep Zscaler's signature databases up to date
6. What is a spear phishing attack? - ANSWER A type of attack in which
malicious files or attachments can be used in an email, luring the user to
open it
7. Contextual DLP policy includes (Select 3): - ANSWER File Type Control
Cloud App Control
Tenancy Restrictions
8. Zscaler supports data at rest scanning with DLP and Cloud Sandbox using
which technology? - ANSWER OOB CASB
9. Zscaler offers ML based data discovery for many thematic document
categories such as: (Select 3) - ANSWER Legal documents
Medical records
Images such as passports, driving license, etc.
, 10. Zscaler offers user notification and coaching via which of the following
mechanisms? (Select 3) - ANSWER Browser Notification (Browser
based)
Slack Connector (Application based)
Zscaler Workflow Automation (Client connector pop-up)
11. EDM (Exact Data Match) is an advanced DLP feature that does which of the
following? - ANSWER EDM enables organizations to perform a
structured data match on specific types of data, e.g. a column of credit card
numbers
12. OCR (Optical Character Recognition) is necessary for which of the
following? - ANSWER OCR helps protect sensitive data in images, image
files and handwritten texts
13. To protect sensitive data, organizations must inspect the content inline with
data classification capabilities such as predefined dictionaries, custom
dictionaries, etc. (True or False) - ANSWER TRUE
14. SSPM (SaaS Security Posture Management) enables organizations to find
which of the following: - ANSWER Cloud misconfigurations and
compliance violations
15. Zscaler offers fully integrated data protection for all channels, which
includes: (Select 3) - ANSWER Cloud channels such as data in motion or
data-at-rest in SaaS applications
Endpoint
, Email
16. What is a possible data exfiltration channel? - ANSWER Cloud based
personal email, file sharing, and collaboration tools
17. How do most major security breaches begin? - ANSWER An attacker
finding your attack surface
18. With Zero Trust, if we use the analogy of publishing your phone number,
then: - ANSWER Your phone number is unpublished and only
authorized parties can call you
19. SSL inspection is important in order to see - ANSWER What's good and
what's bad inside a connection, since most connections are encrypted, in
order to understand if there is any malware coming in and/or if there's any
sensitive data leaking out.
20. What is typically the second step of a breach after an attacker finds your
attack surface? - ANSWER Compromise, for example through a phishing
link that someone may click, which could infect their machine with malware
The Zero Trust Exchange, Zscaler's inline security platform, is powered by data
centers that sit in how many locations? - ANSWER Over 150 data centers
globally
Actual Exam Questions With Reviewed
100% Correct Detailed Answers
Guaranteed Pass!!
1. How are Newly Observed Domains (NODs) different than Newly Registered
Domains (NRDs)? - ANSWER NRDs were registered recently, whereas
NODs may have been registered some time ago but have never been
observed with actual clients visiting them, which makes them suspicious
2. What is the Zscaler Page Risk score? - ANSWER The Page Risk score is a
slider on the Advanced Threat Protection configuration page, which allows a
user to pre-select what level of risk they are comfortable with on particular
websites; the risk itself is computed on a scale of 0-100 by looking at several
factors including the top-level domain, the user agent, whether certain
HTTP headers are missing, whether a high-entropy domain name is being
used, and several other factors
3. What is Ransomware? - ANSWER Malware that steals data and
encrypts it
4. Once a phishing attack occurs and a user is directed to malicious content,
which of the following typically occurs? - ANSWER One or more files
are downloaded, with the attacker also attempting to download secondary
payloads onto the user's machine
,The establishing of an outbound connection from the user's device using an
outbound command and control channel to an adversaries' infrastructure
Full control over the endpoint by the adversary
5. What is Zscaler ThreatLabZ? - ANSWER A best-in-class security threat
research team of more than 100+ security researchers who analyze security
trends and help keep Zscaler's signature databases up to date
6. What is a spear phishing attack? - ANSWER A type of attack in which
malicious files or attachments can be used in an email, luring the user to
open it
7. Contextual DLP policy includes (Select 3): - ANSWER File Type Control
Cloud App Control
Tenancy Restrictions
8. Zscaler supports data at rest scanning with DLP and Cloud Sandbox using
which technology? - ANSWER OOB CASB
9. Zscaler offers ML based data discovery for many thematic document
categories such as: (Select 3) - ANSWER Legal documents
Medical records
Images such as passports, driving license, etc.
, 10. Zscaler offers user notification and coaching via which of the following
mechanisms? (Select 3) - ANSWER Browser Notification (Browser
based)
Slack Connector (Application based)
Zscaler Workflow Automation (Client connector pop-up)
11. EDM (Exact Data Match) is an advanced DLP feature that does which of the
following? - ANSWER EDM enables organizations to perform a
structured data match on specific types of data, e.g. a column of credit card
numbers
12. OCR (Optical Character Recognition) is necessary for which of the
following? - ANSWER OCR helps protect sensitive data in images, image
files and handwritten texts
13. To protect sensitive data, organizations must inspect the content inline with
data classification capabilities such as predefined dictionaries, custom
dictionaries, etc. (True or False) - ANSWER TRUE
14. SSPM (SaaS Security Posture Management) enables organizations to find
which of the following: - ANSWER Cloud misconfigurations and
compliance violations
15. Zscaler offers fully integrated data protection for all channels, which
includes: (Select 3) - ANSWER Cloud channels such as data in motion or
data-at-rest in SaaS applications
Endpoint
16. What is a possible data exfiltration channel? - ANSWER Cloud based
personal email, file sharing, and collaboration tools
17. How do most major security breaches begin? - ANSWER An attacker
finding your attack surface
18. With Zero Trust, if we use the analogy of publishing your phone number,
then: - ANSWER Your phone number is unpublished and only
authorized parties can call you
19. SSL inspection is important in order to see - ANSWER What's good and
what's bad inside a connection, since most connections are encrypted, in
order to understand if there is any malware coming in and/or if there's any
sensitive data leaking out.
20. What is typically the second step of a breach after an attacker finds your
attack surface? - ANSWER Compromise, for example through a phishing
link that someone may click, which could infect their machine with malware
The Zero Trust Exchange, Zscaler's inline security platform, is powered by data
centers that sit in how many locations? - ANSWER Over 150 data centers
globally
