Which TCP port is used to communicate policies to endpoints?: 8190
2. Which Sophos Central manage product protects the data on a lost or
stolen laptop?: Encryption
3. The option to stop the AutoUpdate service is greyed out in Windows
Services. What is the most likely reason for this?: Tamper Pr...
1. Which TCP port is used to communicate policies to endpoints?: 8190
2. Which Sophos Central manage product protects the data on a lost or
stolen laptop?: Encryption
3. The option to stop the AutoUpdate service is greyed out in Windows
Services. What is the most likely reason for this?: Tamper Protection is enable
4. Complete the sentence: Signature-based file scanning relies on...: previ-
ously detected malware characteristics
5. TRUE or FALSE: Tamper protection is enabled by default.: TRUE
6. You are unable to edit policies in Sophos Central. What do you check in
Sophos Central?: That you have the correct role assigned
7. Which URL address do you use to login to Sophos Central Partner Dash-
board?: partnerportal.sophos.com
8. You are detecting low-reputation files and want to change the reputation
level from recommended to strict. Which policy do you edit to make this
change?: Threat Protection
9. What is the FIRST step you must take when deploying virtual environ-
ments?: Check the system requirements
10. You want to prevent users from copying database files to USB drives
without blocking the use of all USB devices. Which policy do you need to
configure?: Data Loss Prevention
11. TRUE or FALSE: You can search for a malicious item across your networ
using EDR: TRUE
12. Which log provides a record of all activities?: Audit log
13. What is the function of anti-exploit technology?: To detect and stop com-
promised vulnerable applications
14. Complete the sentence: The SAV32CLI clean-up tool is a...: Command line
tool included in Sophos Central installation
15. When registering for a Sophos Central Trial, which of the following state-
ments are TRUE?: You must use an email address that has not been used with
Sophos Central before
16. Which tab on the device details page displays the tamper protection
information?: SUMMARY
17. What is the function of Live Protection?: Connects to a cloud server to
check for the latest information about a file
1/7
, SOPHOS CERTIFIED ENGINEER EXAM
18. How long are activities stored for in the Enterprise Dashboard?: 90 days
19. What is the function of an Update Cache?: To download updates from
Sophos Central and store them on a dedicated server on your network
20. What is the function of on-access scanning?: Monitors running processes'
behavior
21. Which of the following alerts is categorized as a high alert?: Failed to
protect an endpoint
22. Which dashboard allows you to manage and apply global settings to
multiple Sophos Central accounts?: The Partner Dashboard
23. Which detection feature can prevent attacks on the master boot record?-
: WipeGuard
24. What is the function of a Message Relay?: To enable all devices to commu-
nicate all policy and reporting data using a dedicated server on your network
25. True or False: Marking an alert as acknowledge will resolve the threat on
the endpoint.: FALSE
26. Which TCP port is used to communicate Updates on endpoints?: 8191
27. TRUE or FALSE: The security VM installer is linked to your Sophos Centr
account.: FALSE
28. TRUE or FALSE: You can deploy an update cache without a Message
Relay.: TRUE
29. You want to change an action for 'confidential' content. Where in Sophos
Central do you make this change?: In the Data Loss Prevention Rule
30. What does HIPS do on a protected endpoint?: Scans for potentially mali-
cious behaviour
31. You have cloned the threat protection base policy, applied the policy to
a group and saved it. When checking the endpoint, the policy changes have
not taken effect. What do you check in the policy?: That the cloned policy has
been enforced
32. In which 2 ways can you license the Enterprise Dashboard?: (1) Master
Licensing
(2) Individual Licensing
33. What is the minimum administrative role that will allow a user to create
and edit policies?: Admin
2/7
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller THEEXCELLENCELIBRARY. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $9.99. You're not tied to anything after your purchase.