Netskope NSK101 Netskope Certified Cloud Security Administrator Exam NCCSA Exam Practice Test

Page: 1 / 14
Total 129 questions
Question 1

All users are going through Netskope's Next Gen SWG. Your CISO requests a monthly report of all users who are accessing cloud applications with a "Low" or a "Poor" CCL, where the activity is either "Edit" or "Upload".

Using the Advanced Analytics interface, which two statements describe which actions must be performed in this scenario? (Choose two.)



Answer : A, B

Create the Report in Advanced Analytics:

Data Collection:

Use the 'Page Events' data collection, which captures detailed user activities on web pages, including edits and uploads.

Filters:

Apply filters to include only the activities 'Edit' and 'Upload'.

Add another filter for the Cloud Confidence Level (CCL) to include only those with 'Low' or 'Poor' ratings.

This ensures the report focuses on the specified user activities within cloud applications that have lower security ratings.

Steps:

Navigate to Advanced Analytics > Reports.

Create a new report and select 'Page Events' as the data collection source.

Apply the necessary filters for activities and CCL values.

Schedule the Report:

Monthly Recurrence:

Set the report to run on a monthly schedule to ensure regular updates.

Configure the report to be sent via email with a PDF attachment.

Steps:

In the report scheduling options, set the recurrence to monthly.

Specify the email recipients, ensuring the CISO receives the report.

Select PDF as the report format.

Reference:

For more details on creating and scheduling reports, refer to the Netskope documentation on Advanced Analytics and report generation.


Question 2
Question 3

Which two common security frameworks are used today to assess and validate a vendor's security practices? (Choose two.)



Answer : B, C

The Building Security in Maturity Model (BSIMM) is a framework that measures and compares the security activities of different organizations. It helps organizations to assess their current security practices and identify areas for improvement. ISO 27001 is an international standard that specifies the requirements for establishing, implementing, maintaining, and improving an information security management system. It helps organizations to manage their information security risks and demonstrate their compliance with best practices. Data Science Council of America (DASCA) is not a security framework, but a credentialing body for data science professionals. NIST Cybersecurity Framework (NIST CSF) is a security framework, but it is not commonly used to assess and validate a vendor's security practices, as it is more focused on improving the cybersecurity of critical infrastructure sectors in the United States.Reference:[BSIMM], [ISO 27001], [DASCA], [NIST CSF].


Question 4

You determine that a business application uses non-standard HTTPS ports. You want to steer all HTTPS traffic for this application and have visibility and control over user activities.

Which action will allow you to accomplish this task?



Answer : C

Identify Non-standard HTTPS Ports:

Determine the specific non-standard HTTPS ports used by the business application.

Create a Steering Exception:

Navigate to the Netskope admin console.

Go to the steering configuration section and create a new steering exception.

Specify the domain of the business application and include the non-standard HTTPS ports.

This exception will ensure that traffic to this application is steered correctly for inspection and control.

Configure Non-standard Ports in the Steering Configuration:

Go to the steering configuration settings.

Add the identified non-standard HTTPS ports to ensure that all traffic using these ports is captured and inspected.

This ensures comprehensive visibility and control over the user activities on the application.

Reference:

For more details on steering configurations and managing exceptions, refer to the Netskope documentation on steering traffic and configuring non-standard ports.


Question 5
Question 6

You want to determine which NewEdge data planes that your remote users have been recently using.

Which area of the Netskope Tenant UI would provide this information?



Answer : A

NewEdge Data Planes Monitoring:

To determine which NewEdge data planes your remote users have been using, you need to access the relevant monitoring section in the Netskope Tenant UI.

Client Steering under Digital Experience Management:

The Client Steering section under Digital Experience Management provides detailed information on how traffic is being steered for remote users.

This section includes insights into the NewEdge data planes being utilized by users.

Steps:

Navigate to Digital Experience Management in the Netskope Tenant UI.

Select Client Steering to view detailed reports and logs on traffic steering.

Analyze the data to identify the NewEdge data planes used by remote users recently.

Reference:

For more details on accessing and using the Client Steering section under Digital Experience Management, refer to the Netskope documentation on digital experience management and client steering.


Question 7

What are two reasons why legacy solutions, such as on-premises firewalls and proxies, fail to secure the data and data access compared to Netskope Secure Web Gateway? (Choose two.)



Page:    1 / 14   
Total 129 questions