CyberArk EPM-DEF Exam Questions Instant Access

Question 1

An EPM Administrator would like to exclude an application from all Threat Protection modules. Where should the EPM Administrator make this change?

APrivilege Threat Protection under Policies.

BAuthorized Applications under Application Groups.

CProtect Against Ransomware under Default Policies.

DThreat Protection under Agent Configurations.

Answer : B

Question 2

Which EPM reporting tool provides a comprehensive view of threat detection activity?

AThreat Detection Dashboard

BDetected Threats

CThreat Detection Events

DMcAfee ePO Reports

Answer : A

Question 3

For the CyberArk EPM Threat Deception Credential Lure feature, what is the recommendation regarding the username creation?

AThe username should match to an existing account.

BThe username should have a strong password associated.

CThe username should not match to an existing account.

DThe username should match the built-in local Administrator.

Answer : C

Question 4

What are the policy targeting options available for a policy upon creation?

AAD Users and Groups, Computers in AD Security Groups, Servers

BComputers in this set, Computers in AD Security Groups, Users and Groups

COS Computers, EPM Sets, AD Users

DEPM Sets, Computers in AD Security Groups, AD Users and AD Security Groups

Answer : D

Question 5

What feature is designed to exclude applications from CyberArk EPM's Ransomware Protection, without whitelisting the application launch?

ATrusted Sources

BAuthorized Applications (Ransomware Protection)

CThreat Intelligence

DPolicy Recommendations

Answer : B

Question 6

Which setting in the agent configuration controls how often the agent sends events to the EPM Server?

AEvent Queue Flush Period

BHeartbeat Timeout

CCondition Timeout

DPolicy Update Rate

Answer : A

Question 7

How does CyberArk EPM's Ransomware Protection feature monitor for Ransomware Attacks?

AIt compares known ransomware signatures retrieved from virus databases.

BIt sandboxes the suspected ransomware and applies heuristics.

CIt monitors for any unauthorized access to specified files.

DIt performs a lookup of file signatures against VirusTotal's database.

Answer : B

CyberArk Defender - EPM EPM-DEF Exam Questions