1. Home
  2. Symantec
  3. 250-561

Endpoint Security Complete - Administration R1

Exam Details

  • Exam Code
    :250-561
  • Exam Name
    :Endpoint Security Complete - Administration R1
  • Certification
    :Symantec Certifications
  • Vendor
    :Symantec
  • Total Questions
    :70 Q&As
  • Last Updated
    :Mar 08, 2025

Symantec Symantec Certifications 250-561 Questions & Answers

  • Question 21:

    Which SES feature helps administrator apply policies based on specific endpoint profiles?

    A. Device Groups

    B. Device Profiles

    C. Policy Bundles

    D. Policy Groups

  • Question 22:

    Which security threat uses malicious code to destroy evidence, break systems, or encrypt data?

    A. Execution

    B. Persistence

    C. Impact

    D. Discovery

  • Question 23:

    Which report template type should an administrator utilize to create a daily summary of network threats detected?

    A. Network Risk Report

    B. Blocked Threats Report

    C. Intrusion Prevention Report

    D. Access Violation Report

  • Question 24:

    An administrator suspects that several computers have become part of a botnet. What should the administrator do to detect botnet activity on the network?

    A. Enable the Command and Control Server Firewall

    B. Add botnet related signatures to the IPS policy's Audit Signatures list

    C. Enable the IPS policy's Show notification on the device setting

    D. Set the Antimalware policy's Monitoring Level to 4

  • Question 25:

    Which security control is complementary to IPS, providing a second layer of protection against network attacks?

    A. Host Integrity

    B. Antimalware

    C. Firewall

    D. Network Protection

  • Question 26:

    Which designation should an administrator assign to the computer configured to find unmanaged devices?

    A. Discovery Broker

    B. Discovery Agent

    C. Discovery Manager

    D. Discovery Device

  • Question 27:

    An administrator needs to create a new Report Template that will be used to track firewall activity. Which two (2) report template settings are optional? (Select 2)

    A. Output format

    B. Generation schedule

    C. Email recipients

    D. Time frame

    E. Size restrictions

  • Question 28:

    Which SES advanced feature detects malware by consulting a training model composed of known good and known bad fries?

    A. Signatures

    B. Advanced Machine Learning

    C. Reputation D. Artificial Intelligence

  • Question 29:

    Which report template includes a summary of risk distribution by devices, users, and groups?

    A. Device Integrity

    B. Threat Distribution

    C. Comprehensive

    D. Weekly

  • Question 30:

    Which dashboard should an administrator access to view the current health of the environment?

    A. The Antimalware Dashboard

    B. The SES Dashboard

    C. The Device Integrity Dashboard

    D. The Security Control Dashboard

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Symantec exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 250-561 exam preparations and Symantec certification application, do not hesitate to visit our Vcedump.com to find your solutions here.