EMT Practice Test

1. Question Content...


Question List

Question1: Your department is asked to report on GDPR data publicly exposed in Microsoft 365, Salesforce. and Slack-sanctioned cloud applications. Which deployment model would you use to discover this data?

Question2: You are required to mitigate malicious scripts from being downloaded into your corporate devices every time a user goes to a website. Users need to access websites from a variety of categories, including new websites.
Which two actions would help you accomplish this task while allowing the user to work? (Choose two.)

Question3: You have applied a DLP Profile to block all Personally Identifiable Information data uploads to Microsoft 365 OneDrive. DLP Alerts are not displayed and no OneDrive-related activities are displayed in the Skope IT App Events table.
In this scenario, what are two possible reasons for this issue? (Choose two.)

Question4: Which two cloud security and infrastructure enablement technologies does Secure Access Service Edge (SASE) combine into its unified platform? (Choose two.)

Question5: What are two fundamental differences between the inline and API implementation of the Netskope platform?
(Choose two.)

Question6: Click the Exhibit button.
Referring to the exhibit, which statement accurately describes the difference between Source IP (Egress) and Source IP (User) address?

Question7: Exhibit

Which portion of the interface shown in the exhibit allows an administrator to set severity, assign ownership, track progress, and perform forensic analysis with excerpts of violating content?

Question8: What is the limitation of using a legacy proxy compared to Netskope's solution?

Question9: You are working with a large retail chain and have concerns about their customer data. You want to protect customer credit card data so that it is never exposed in transit or at rest. In this scenario, which regulatory compliance standard should be used to govern this data?

Question10: You just deployed the Netskope client in Web mode and several users mention that their messenger application is no longer working. Although you have a specific real-time policy that allows this application, upon further investigation you discover that it is using proprietary encryption. You need to permit access to all the users and maintain some visibility.
In this scenario, which configuration change would accomplish this task?

Question11: You want to deploy Netskope's zero trust network access (ZTNA) solution, NPA. In this scenario, which action would you perform to accomplish this task?

Question12: Which three technologies describe the primary cloud service models as defined by the National Institute of Standards and Technology (NIST)? (Choose three.)

Question13: What are two use cases for Netskope's DLP solution? (Choose two.)

Question14: You are attempting to allow access to an application using NPA. Private Apps steering is already enabled for all users.
In this scenario, which two actions are required to accomplish this task? (Choose two.)

Question15: What is a benefit that Netskope instance awareness provides?

Question16: Which two statements are correct about DLP Incidents in the Netskope platform? (Choose two.)

Question17: What are two CASB inline interception use cases? (Choose two.)

Question18: Click the Exhibit button.
What are two use cases where the parameter shown in the exhibit is required? (Choose two.)

Question19: You are working with traffic from applications with pinned certificates. In this scenario, which statement is correct?

Question20: A new customer is concerned about performance, especially with respect to Microsoft 365. They have offices in 20 countries around the world and their workforce is mostly mobile.
In this scenario, which two statements about NewEdge would align with the customer's requirements? (Choose two.)

Question21: You need to block all users from uploading data files into risky collaboration applications. Which element must you configure within Netskope's CASB to accomplish this task?

Question22: How does a cloud security solution achieve visibility into TLS/SSL-protected Web traffic?

Question23: Which three security controls are offered by the Netskope Cloud platform? (Choose three.)

Question24: A customer asks you to create several real-time policies. Policy A generates alerts when any user downloads, uploads, or shares files on a cloud storage application. Policy B blocks users from downloading files from any operating system (OS) other than Mac or Windows for cloud storage. In this case, policy A is least restrictive and policy B is more restrictive.
Which statement is correct in this scenario?

Question25: You have an issue with the Netskope client connecting to the tenant.
In this scenario, what are two ways to collect the logs from the client machine? (Choose two.)

Question26: You investigate a suspected malware incident and confirm that it was a false alarm.

Question27: Which two use cases would be considered examples of Shadow IT within an organization? (Choose two.)

Question28: A customer is considering the cloud shared responsibility model.
In this scenario, which two criteria become the customer's responsibility? (Choose two.)

Question29: There is a DLP violation on a file in your sanctioned Google Drive instance. The file is in a deleted state. You need to locate information pertaining to this DLP violation using Netskope. In this scenario, which statement is correct?

Question30: Which two technologies form a part of Netskope's Threat Protection module? (Choose two.)

Question31: You determine that a business application uses non-standard HTTPS ports. You want to steer all HTTPS traffic for this application and have visibility and control over user activities.
Which action will allow you to accomplish this task?

Question32: What are two supported ways to provision users to your customer's Netskope tenant? (Choose two.)

Question33: You need to locate events for specific activities such as "edit" or "login successful" in a cloud application.
In which SkopeIT Events & Alerts page would this information be found?

Question34: What are two reasons why legacy solutions, such as on-premises firewalls and proxies, fail to secure the data and data access compared to Netskope Secure Web Gateway? (Choose two.)

Question35: Users are connecting to sanctioned cloud applications from public computers, such as from a hotel business center.
Which traffic steering method would work in this scenario?

Question36: You are required to create a policy that will notify and allow users to log into their personal Google Drive instance.
Which two policy components must be configured to enforce this use case? (Choose two.)

Question37: Which two statements describe a website categorized as a domain generated algorithm (DGA)? (Choose two.)

Question38: When would an administrator need to use a tombstone file?

Question39: What is a benefit that Netskope instance awareness provides?

Question40: What are two uses for deploying a Netskope Virtual Appliance? (Choose two.)

Question41: You want to use an out-of-band API connection into your sanctioned Microsoft 365 OneDrive for Business application to find sensitive content, enforce near real-time policy controls, and quarantine malware.
In this scenario, which primary function in the Netskope platform would you use to connect your application to Netskope?

Question42: Which three statements about Netskope Private Access Publishers are correct? (Choose three.)

Question43: Your company has implemented Netskope's Cloud Firewall and requires that all FTP connections are blocked regardless of the ports being used.
Which two statements correctly identify how to block FTP access? (Choose two.)

Question44: When accessing an encrypted website (HTTPS), what is a reason why you might receive a "certificate not trusted" browser message?

Question45: You need to create a service request ticket for a client-related issue using the Netskope client Ul. In this scenario, you generate the client logs by right-clicking on the system tray icon and choosing

Question46: Which two traffic steering configurations are supported by Netskope? (Choose two.)

Question47: Click the Exhibit button.

A user has the Netskope Client enabled with the correct steering configuration applied. The exhibit shows an inline policy that has a predefined webmail category blocked. However the user is still able to access Yahoo mail.
Which statement is correct in this scenario?

Question48: As an administrator, you need to configure the Netskope Admin UI to be accessible by specific IP addresses and to display a custom message after the admin users have been authenticated.
Which two statements are correct in this scenario? (Choose two.)

Question49: In which scenario would you use a SAML reverse proxy?