1. Home
  2. Symantec
  3. 250-438

Administration of Symantec Data Loss Prevention 15

Exam Details

  • Exam Code
    :250-438
  • Exam Name
    :Administration of Symantec Data Loss Prevention 15
  • Certification
    :Symantec Certifications
  • Vendor
    :Symantec
  • Total Questions
    :70 Q&As
  • Last Updated
    :Mar 06, 2025

Symantec Symantec Certifications 250-438 Questions & Answers

  • Question 31:

    A DLP administrator is attempting to add a new Network Discover detection server from the Enforce management console. However, the only available options are Network Monitor and Endpoint servers. What should the administrator do to make the Network Discover option available?

    A. Restart the Symantec DLP Controller service

    B. Apply a new software license file from the Enforce console

    C. Install a new Network Discover detection server

    D. Restart the Vontu Monitor Service

  • Question 32:

    Which option is an accurate use case for Information Centric Encryption (ICE)?

    A. The ICE utility encrypts files matching DLP policy being copied from network share through use of encryption keys.

    B. The ICE utility encrypts files matching DLP policy being copied to removable storage through use of encryption keys.

    C. The ICE utility encrypts files matching DLP policy being copied to removable storage on an endpoint use of certificates.

    D. The ICE utility encrypts files matching DLP policy being copied from network share through use of certificates

  • Question 33:

    What is required on the Enforce server to communicate with the Symantec DLP database?

    A. Port 8082 should be opened

    B. CryptoMasterKey.properties file

    C. Symbolic links to .dbf files

    D. SQL*Plus Client

  • Question 34:

    Which two factors are common sources of data leakage where the main actor is well-meaning insider? (Choose two.)

    A. An absence of a trained incident response team

    B. A disgruntled employee for a job with a competitor

    C. Merger and Acquisition activities

    D. Lack of training and awareness

    E. Broken business processes

  • Question 35:

    Which two DLP products support the new Optical Character Recognition (OCR) engine in Symantec DLP 15.0? (Choose two.)

    A. Endpoint Prevent

    B. Cloud Service for Email

    C. Network Prevent for Email

    D. Network Discover

    E. Cloud Detection Service

  • Question 36:

    Which two actions are available for a "Network Prevent: Remove HTTP/HTTPS content" response rule when the content is unable to be removed? (Choose two.)

    A. Allow the content to be posted

    B. Remove the content through FlexResponse

    C. Block the content before posting

    D. Encrypt the content before posting

    E. Redirect the content to an alternative destination

  • Question 37:

    What is the correct order for data in motion when a customer has integrated their CloudSOC and DLP solutions?

    A. User > CloudSOC Gatelet > DLP Cloud Detection Service > Application

    B. User > Enforce > Application

    C. User > Enforce > CloudSOC > Application

    D. User > CloudSOC Gatelet > Enforce > Application

  • Question 38:

    Refer to the exhibit.

    What activity should occur during the baseline phase, according to the risk reduction model?

    A. Define and build the incident response team

    B. Monitor incidents and tune the policy to reduce false positives

    C. Establish business metrics and begin sending reports to business unit stakeholders

    D. Test policies to ensure that blocking actions minimize business process disruptions

  • Question 39:

    Which tool must a DLP administrator run to certify the database prior to upgrading DLP?

    A. Lob_Tablespace Reclamation Tool

    B. Upgrade Readiness Tool

    C. SymDiag

    D. EnforceMigrationUtility

  • Question 40:

    Which server target uses the "Automated Incident Remediation Tracking" feature in Symantec DLP?

    A. Exchange

    B. File System

    C. Lotus Notes

    D. SharePoint

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Symantec exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 250-438 exam preparations and Symantec certification application, do not hesitate to visit our Vcedump.com to find your solutions here.