Summer Sale Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Netskope NSK300 Netskope Certified Cloud Security Architect Exam Exam Practice Test

Page: 1 / 8
Total 81 questions

Netskope Certified Cloud Security Architect Exam Questions and Answers

Question 1

A recent report states that users are using non-sanctioned Cloud Storage platforms to share data Your CISO asks you for a list of aggregated users, applications, and instance IDs to increase security posture

Which Netskope tool would be used to obtain this data?

Options:

A.

Advanced Analytics

B.

Behavior Analytics

C.

Applications in Skope IT

D.

Cloud Confidence Index (CCI)

Question 2

You have enabled CASB traffic steering using the Netskope Client, but have not yet enabled a Real-time Protection policy. What is the default behavior of the traffic in this scenario?

Options:

A.

Traffic will be blocked and logged.

B.

Traffic will be allowed and logged.

C.

Traffic will be blocked, but not logged.

D.

Traffic will be allowed, but not logged.

Question 3

You are the security administrator for a medical devices manufacturer. Your CISO asks you which type of protection Netskope provides for zero-day malware. Which two statements are correct in this scenario? (Choose two.)

Options:

A.

Netskope only supports signature-based detection and does not offer any zero-day protection.

B.

Netskope’s threat protection relies on integration with your on-premises threat protection solutions to provide zero-day protection.

C.

Netskope supports sandboxing and advanced heuristic analysis to analyze unknown or unseen files which provides zero-day protection.

D.

Netskope can integrate with third-party Endpoint Detection and Response (EDR) and sandboxing solutions to provide additional zero-day protection.

Question 4

You are configuring Administrator SSO using SAML 2.0 with roles based on group membership. In this scenario, how is the administrator group passed from the IdP within the SAML assertion to Netskope?

Options:

A.

using ADMIN-GROUP

B.

using OU-GROUP

C.

using GROUP_NAME

D.

using ADMIN-ROLE

Question 5

You deployed the Netskope Client for Web steering in a large enterprise with dynamic steering. The steering configuration includes a bypass rule for an application that is IP restricted. What is the source IP for traffic to this application when the user is on-premises at the enterprise?

Options:

A.

Loopback IPv4

B.

Netskope data plane gateway IPv4

C.

Enterprise Egress IPv4

D.

DHCP assigned RFC1918 IPv4

Question 6

You receive a report from your endpoint team that a device may no longer be running the Netskope Client. You only know the hostname of the machine in question. You want to remotely verify whether the client is still installed and steering traffic and which user is assigned to the device. In this scenario, how would you accomplish this task?

Options:

A.

Enable IP restrictions for a sanctioned application and see if any users report an access problem.

B.

Under Skope IT Users, look at the Users Over Time graph for any anomalies.

C.

Under the Netskope Client Devices page, search for the hostname in question and identify the current Client Status and User information.

D.

Under Skope IT Applications Events, query by hostname and determine the last event date and time.

Question 7

You are the network architect for a company using Netskope Private Access. Multiple users are reporting that they are unable to access an application using Netskope Private Access that was working previously. You have verified that the Real-time Protection policy allows access to the application, private applications are steered for the users, and the application is reachable from internal machines. You must verify that the application is reachable through Netskope Publisher

In this scenario, which two tools in the Netskope UI would you use to accomplish this task? (Choose two.)

Options:

A.

Reachability Via Publisher in the App Definitions page

B.

Troubleshooter tool in the App Definitions page

C.

Applications in Skope IT

D.

Clear Private App Auth under Users in Skope IT

Question 8

You are deploying the Netskope Client in a multi-user VDI environment and need to determine the command to deploy the MSI.

Which three parameters are required in this scenario? (Choose three.)

Options:

A.

mode=peruserconfig

B.

host=

C.

installmode=IDP

D.

token=

E.

autoupdate=on

Question 9

Review the exhibit.

Question # 9

AcmeCorp has recently begun using Microsoft 365. The organization is concerned that employees will start using third-party non-AcmeCorp OneDrive instances to store company data. The CISO asks you to use Netskope to create a policy that ensures that no data is being uploaded to non-AcmeCorp instances of OneDrive.

Referring to the exhibit, which two policies would accomplish this posture? (Choose two.)

Options:

A.

4

B.

3

C.

2

D.

1

Question 10

You do not want a scheduled Advanced Analytics dashboard to be automatically updated when Netskope makes improvements to that dashboard. In this scenario, what would you do to retain the original dashboard?

Options:

A.

Create a new dashboard from scratch that mimics the Netskope dashboard you want to use.

B.

Copy the dashboard into your Group or Personal folders and schedule from these folders.

C.

Ask Netskope Support to provide the dashboard and import into your Personal folder.

D.

Download the dashboard you want and Import from File into your Group or Personal folder.

Question 11

Review the exhibit.

Question # 11

A user has attempted to upload a file to Microsoft OneDrive that contains source code with Pll and PCI data.

Referring to the exhibit, which statement is correct?

Options:

A.

The user will be blocked and a single Incident will be generated referencing the DLP-PCI profile.

B.

The user will be blocked and a single Incident will be generated referencing all of the matching DLP profiles

C.

The user will be blocked and a separate incident will be generated for each of the matching DLP profiles.

D.

The user will be alerted and a single incident will be generated referencing the DLP-PII profile.

Question 12

Your company purchased Netskope ' s Next Gen Secure Web Gateway You are working with your network administrator to create GRE tunnels to send traffic to Netskope Your network administrator has set up the tunnel, keepalives. and a policy-based route on your corporate router to send all HTTP and HTTPS traffic to Netskope. You want to validate that the tunnel is configured correctly and that traffic is flowing.

In this scenario, which two statements are correct? (Choose two.)

Options:

A.

You can use your local router or network device to verify that keepalives are being received and traffic is flowing to Netskope.

B.

You must use your own monitoring tools to verify that the tunnel is up.

C.

You can verify that the tunnel is up and receiving traffic in the Netskope UI under Settings > Security Cloud Platform > GRE.

D.

You can verify that the tunnel is up in the Netskope Trust portal at https://trust netskope.com/.

Question 13

You are deploying the Netskope Client to Windows devices. The following command line would be used to install the client MSI file:

Question # 13

In this scenario, what is < token > referring to in the command line?

Options:

A.

a Netskope user identifier

B.

the Netskope organization ID

C.

the URL of the IdP used to authenticate the users

D.

a private token given to you by the SCCM administrator

Question 14

You have users connecting to Netskope from around the world You need a way for your NOC to quickly view the status of the tunnels and easily visualize where the tunnels are located. Which Netskope monitoring tool would you use in this scenario?

Options:

A.

Network Steering in Digital Experience Management

B.

Network Events in Skope IT

C.

Web Usage Summary in Advanced Analytics

D.

Alerts in Skope IT

Question 15

You are architecting a Netskope steering configuration for devices that are not owned by the organization The users could be either on-premises or off-premises and the architecture requires that traffic destined to the company ' s instance of Microsoft 365 be steered to Netskope for inspection.

How would you achieve this scenario from a steering perspective?

Options:

A.

Use IPsec and GRE tunnels.

B.

Use reverse proxy.

C.

Use explicit proxy and the Netskope Client

D.

Use DPoP and Secure Forwarder

Question 16

You are asked to create a customized restricted administrator role in your Netskope tenant for a newly hired employee. Which two statements are correct in this scenario? (Choose two.)

Options:

A.

An admin role prevents admins from downloading and viewing file content by default.

B.

The scope of the data shown in the UI can be restricted to specific events.

C.

All role privileges default to Read Only for all functional areas.

D.

Obfuscation can be applied to all functional areas.

Question 17

Review the exhibit.

Question # 17

Netskope has been deployed using Cloud Explicit Proxy and PAC files. Authentication using Active Directory Federation Services (ADFS) has been configured for SAML Forward Proxy auth. When the users open their browser and try to go to a site, they receive the error shown in the exhibit.

What is a reason for this error?

Options:

A.

The group attribute was not set in the Netskope SAML Forward Proxy configuration.

B.

The Netskope nsauth proxy cannot reach the identity provider.

C.

Netskope is not compatible with the identity provider.

D.

There is an issue with the formatting of the ADFS certificate that was uploaded to the Netskope tenant for SAML Forward Proxy configuration.

Question 18

You received a malicious file hash from a third party and you want to see all instances of the hash that have been detected by Netskope. In this scenario, which two tools show the desired information? (Choose two.)

Options:

A.

the Netskope Client logs

B.

a SIEM of your choice and Web Transactions

C.

Skope IT

D.

Netskope Advanced Analytics

Question 19

What is a Fast Scan component of Netskope Threat Detection?

Options:

A.

Heuristic Analysis

B.

Machine Learning

C.

Dynamic Analysis

D.

Statical Analysis

Question 20

You want to integrate with a third-party DLP engine that requires ICAP. In this scenario, which Netskope platform component must be configured?

Options:

A.

On-Premises Log Parser (OPLP)

B.

Secure Forwarder

C.

Netskope Cloud Exchange

D.

Netskope Adapter

Question 21

Your CISO asks that you to provide a report with a visual representation of the top 10 applications (by number of objects) and their risk score. As the administrator, you decide to use a Sankey visualization in Advanced Analytics to represent the data in an efficient manner.

In this scenario, which two field types are required to produce a Sankey Tile in your report? {Choose two.)

Options:

A.

Dimension

B.

Measure

C.

Pivot Ranks

D.

Period of Type

Question 22

You are asked to create a Real-time Protection policy to inspect outbound e-mail for DLP violations. You must prevent sensitive e-mail from leaving the corporate mail relay.

In this scenario, which Real-time Protection policy action must be specified?

Options:

A.

Alert

B.

Block

C.

Forward to Proxy

D.

Add SMTP Header

Question 23

You are implementing Netskope Cloud Exchange in your company lo include functionality provided by third-party partners. What would be a reason for using Netskope Cloud Risk Exchange in this scenario?

Options:

A.

to ingest events and alerts from a Netskope tenant

B.

to feed SOC with detection and response services

C.

to map multiple scores to a normalized range

D.

to automate service tickets from alerts of interest

Question 24

You are responsible for data security at a large hospital. You need to protect patient personal data including patient ID numbers, e-mail addresses, billing addresses, and credit card numbers that are stored in your database. You want to reduce false positives because you have limited resources for incident response. Which Netskope DLP capability would you use in this scenario?

Options:

A.

Use the predefined DLP AMRA profile.

B.

Use the predefined DLP HIPAA profile.

C.

Choose Medical Classifiers in a custom DLP profile.

D.

Create a custom Exact Match rule in a custom DLP profile.

Page: 1 / 8
Total 81 questions