Free Sales Ending Soon - 100% Valid NSK100 Exam Dumps with 62 Questions [Q29-Q47]

NO.29 Which two traffic steering configurations are supported by Netskope? (Choose two.)

browser isolation traffic only

cloud applications only

all Web traffic including cloud applications

Web traffic only

NO.30 Which two controls are covered by Netskope’s security platform? (Choose two.)

ZTNA

VPN

CASB

EDR

NO.31 What correctly defines the Zero Trust security model?

least privilege access

multi-layered security

strong authentication

double encryption

NO.32

Click the Exhibit button.
Referring to the exhibit, which statement accurately describes the difference between Source IP (Egress) and Source IP (User) address?

Source IP (Egress) is the IP address of the destination Web server while Source IP (User) is the IP address assigned to your network.

Source IP (Egress) is the IP address assigned to the endpoint host IP address while Source IP (User) is the public IP address of your Internet edge router.

You must always leave the source IP fields blank and configure the user identity as a source criteria.

Source IP (Egress) is the public IP address of your Internet edge router while Source IP (User) is the address assigned to the endpoint.

NO.33 Which two functions are available for both inline and API protection? (Choose two.)

multi-factor authentication

threat protection

DLP

Cloud Security Posture Management (CSPM)

NO.34 Which two statements describe a website categorized as a domain generated algorithm (DGA)? (Choose two.)

The website is used for domain registration.

The domain contains malicious algorithms.

The website is used to hide a command-and-control server.

The domain was created by a program.

NO.35 A customer changes CCI scoring from the default objective score to another score. In this scenario, what would be a valid reason for making this change?

The customer has discovered a new SaaS application that is not yet rated in the CCI database.

The customer’s organization places a higher business risk weight on vendors that claim ownership of their data.

The customer wants to punish an application vendor for providing poor customer service.

The customer’s organization uses a SaaS application that is currently listed as “under research”.

NO.36 You have applied a DLP Profile to block all Personally Identifiable Information data uploads to Microsoft 365 OneDrive. DLP Alerts are not displayed and no OneDrive-related activities are displayed in the Skope IT App Events table.
In this scenario, what are two possible reasons for this issue? (Choose two.)

The Cloud Storage category is in the Steering Configuration as an exception.

The destination domain is excluded from decryption in the decryption policy.

A Netskope POP is not in your local country and therefore DLP policies cannot be applied.

DLP policies do not apply when using IPsec as a steering option.

NO.37 What are two primary advantages of Netskope’s Secure Access Service Edge (SASE) architecture? (Choose two.

no on-premises hardware required for policy enforcement

Bayesian spam filtering

Endpoint Detection and Response (EDR)

single management console

NO.38 According to Netskope. what are two preferred methods to report a URL miscategorization? (Choose two.)

Use www.netskope.com/url-lookup.

Use the URL Lookup page in the dashboard.

Email [email protected].

Tag Netskope on Twitter.

NO.39 Your company asks you to obtain a detailed list of all events from the last 24 hours for a specific user. In this scenario, what are two methods to accomplish this task? (Choose two.)

Use the Netskope reporting engine.

Export the data from Skope IT Application Events.

Use the Netskope REST API.

Export the data from Skope IT Alerts.

NO.40 Which two cloud security and infrastructure enablement technologies does Secure Access Service Edge (SASE) combine into its unified platform? (Choose two.)

Distributed Denial of Service Protection (DDoS)

Zero Trust Network Access (ZTNA)

Cloud Access Security Broker (CASB)

Unified Threat Management (UTM)

NO.41 You are working with a large retail chain and have concerns about their customer data. You want to protect customer credit card data so that it is never exposed in transit or at rest. In this scenario, which regulatory compliance standard should be used to govern this data?

SOC 3

PCI-DSS

AES-256

ISO 27001

NO.42 What are two fundamental differences between the inline and API implementation of the Netskope platform?
(Choose two.)

The API implementation can be used with both sanctioned and unsanctioned applications.

The API implementation can only be used with sanctioned applications.

The inline implementation can effectively block a transaction in both sanctioned and unsanctioned applications.

The inline implementation can only effectively block a transaction in sanctioned applications.

NO.43 A company is attempting to steer traffic to Netskope using GRE tunnels. They notice that after the initial configuration, users cannot access external websites from their browsers.
What are three probable causes for this issue? (Choose three.)

The pre-shared key for the GRE tunnel is incorrect.

The configured GRE peer in the Netskope platform is incorrect.

The corporate firewall might be blocking GRE traffic.

The route map was applied to the wrong router interface.

Netskope does not support GRE tunnels.

NO.44 When would an administrator need to use a tombstone file?

You use a tombstone file when a policy causes a file download to be blocked.

You use a tombstone file when a policy causes a publicly shared file to be encrypted.

You use a tombstone file when the policy causes a file to be moved to quarantine.

You use a tombstone file when a policy causes a file to be moved to legal hold.

NO.45 You want to set up a Netskope API connection to Box.
What two actions must be completed to enable this connection? (Choose two.)

Install the Box desktop sync client.

Authorize the Netskope application in Box.

Integrate Box with the corporate IdP.

Configure Box in SaaS API Data protection.

NO.46 There is a DLP violation on a file in your sanctioned Google Drive instance. The file is in a deleted state. You need to locate information pertaining to this DLP violation using Netskope. In this scenario, which statement is correct?

You can find DLP violations under Forensic profiles.

DLP incidents for a file are not visible when the file is deleted.

You can find DLP violations under the Incidents dashboard.

You must create a forensic profile so that an incident is created.

NO.47 You are required to mitigate malicious scripts from being downloaded into your corporate devices every time a user goes to a website. Users need to access websites from a variety of categories, including new websites.
Which two actions would help you accomplish this task while allowing the user to work? (Choose two.)

Allow the user to browse uncategorized domains but restrict edit activities.

Block malware detected on download activity for all remaining categories.

Block known bad websites and enable RBI to uncategorized domains.

Allow a limited amount of domains and block everything else.

Free Sales Ending Soon – 100% Valid NSK100 Exam Dumps with 62 Questions [Q29-Q47]

Leave a Reply Cancel reply