ST0-151 - Symantec Control Compliance Suite 11 Technical Assessment
Go back to
Symantec
Example Questions
A SQL server system that hosts both the Symantec Control Compliance Suite 11.0 production and reporting databases should be configured to use which percentage of available physical memory (RAM)?
75%
The Accounting Department Manager is responsible for the accounting department payroll database. What is the Accounting Manager's primary responsibility in the Symantec Control Compliance Suite 11.0 Entitlements Manager?
approving permissions on the payroll database in the Entitlements manager
Which action is invalid for a predefined standard?
editing
Which Role can a user's account be placed in to approve Policies?
Policy Administrator
Which prerequisite must be selected from the Settings > General > System Configuration section to report on Symantec Control Compliance Suite 11.0 system events?
Auditing
The CCS Agent collects computer data and forwards it to which Symantec Control Compliance Suite 11.0 server component?
CCS Manager Server
What is the purpose of Control Statements in Symantec Control Compliance Suite 11.0?
They reduce repetition by identifying common requirements from multiple frameworks or regulations.
Users can copy an Asset Group to which two locations? (Select two.)
Asset System root folder
Assets folder
In addition to installing Crystal Reports 2010, which permission must be granted to create a user-defined report template?
read-only access to the reporting database
Which Symantec Control Compliance Suite 11.0 server component is responsible for managing data storage and workflow in the production database?
Application Server
Which function is unavailable in the Symantec Control Compliance Suite 11.0 CCS Web Console?
creating policies
What are two functions of the Control Compliance Suite 11.0 (CCS) Directory? (Select two.)
It manages web-based dashboards.
It executes all standards-based jobs.
Which two primary tasks are required before a user can collect data on assets in the asset system? (Select two.)
configure the data collectors
register a CCS Manager
After a policy has been reviewed, when is it automatically submitted for approval?
when the review period expires
What is a required configuration item for a CCS Manager?
role
Which is the correct order of operations for the Symantec Control Compliance Suite 11.0 Standards Manager?
Collection > Evaluation > Reporting
Data Collection jobs can be created from which area?
Manage > Standards
An organization has a distributed deployment for Symantec Control Compliance Suite 11.0 with 75 stand-alone CCS Managers spread across 10 sites and 5 domains. How many certificates need to be generated to register the stand-alone CCS Managers?
75
Which step must be taken before an evaluation job is set up?
configure data collectors based on the selected data collection model
Entitlement information is imported and available for a data owner after which step in the entitlement workflow?
The Entitlement Manager configures the control point.
Symantec Control Compliance Suite 11.0 allows multi-select functionality in Standards Manager, which means that more than one standard, section, or check can be selected at a time to perform common tasks. Which two tasks can be performed when a user selects standards, sections, or checks simultaneously? (Select two.)
deleting
requesting an exception
The risk calculation logic in the Risk Manager module calculates the risk score based on the evaluation and the assessment data that is collected from checks, questions, and extended tests and assessment procedures that are available in the reporting database for the corresponding assets. Which job type does Symantec Control Compliance Suite 11.0 run for Risk Manager to determine the correct risk score?
Global Metrics and Trends Computation job
What is a contrasting point between the Assess Procedural Controls and Assess Technical Controls business objectives?
The Assess Procedural Controls business objective uses the Response Assessment Module to control built-in content and mandates, whereas the Assess Technical Controls business objective allows provision of capacity to assess security compliance of assets against a set of standards.
What establishes an association between the data fields in imported external data and collected Symantec Control Compliance Suite 11.0 data, ensuring Symantec Control Compliance Suite 11.0 is able to consume the data from the external system?
correlated data
An organization has 5,000 assets that must be scanned weekly for the next calendar year using standards containing 350 checks. What is the approximate amount of Reporting Database disk space required for each standard?
300 GB
What does enabling chaining on a report allow a user to do?
run a Collection-Evaluation-Report
Which equation is used to calculate an Assets Compliance score?
Number of checks Passed / (Total number of checks - Not Applicable checks)
What are two functions of the Symantec Control Compliance Suite 11.0 Directory server? (Select two.)
stores information aboutpreferences and roles as well as some business objects
hosts the certificate authority for the Symantec ControlCompliance Suite 11.0 system
The Risk Manager module in Symantec Control Compliance Suite 11.0 is used to assist an organization in achieving which business objective?
assessing IT risk
What are two requirements for launching the Certificate Management Console? (Select two.)
The user must be logged onto the system hosting Encryption Management Services.
The user must know the Root Certificate password.
During a fresh deployment of Symantec Control Compliance Suite 11.0, the installer displays a critical error at the completion of the product installation. What is the recommended resolution for the failure?
uninstall and re-install the product after rectifying the problem
Which attribute is excluded from the data schema?
Compliance
Which product can be used for the business objective to evaluate exposure from external threats?
Symantec Vulnerability Manager
A report defined as heavy-weight, for example a Compliance by Asset report, fails to generate if the number of assets exceeds which value?
200
A query halts with the error: "An Error occurred in Data Query activity: Unable to retrieve list of assets from directory server: No Assets were resolved from the directory, either due to insufficient permissions or an invalid job definition". What are two possible solutions? (Select two.)
verify that the Service Principal Names are properly registered
verify that the Application Server service account is trusted for delegation
What does the source "Directory Server (LDAP)" in the Import Asset Wizard refer to?
Domain Controller
Common Fields CIA values are associated with which object type?
Asset
An administrator needs to display all of the integration bridge details on the Application Server and the available endpoints. Which display contains this information?
Health and Status Details display
Which deployment model should be used to monitor up to 5,000 assets monthly, based on sizing guidelines?
medium scale deployment
A Control Compliance Suite 11.0 user schedules a Policy Acceptance report. After the Report job finishes, the user opens the results and receives the message: 'No data available to generate this report.' The user is sure that certain people have already accepted policies this morning. What should the user do in order to get the data in the report?
Run the Report Data Purge job.
A partner responsible for installing a Symantec Control Compliance Suite 11.0 deployment adds a domain user to the CCS Administrator role. The domain user needs to create new certificates for multiple, new CCS Manager systems; however when the user attempts to create a certificate, it fails. What is a likely reason for the failure?
The user must be an administrator on the Application Server system.
Which two types of credentials can be used for collecting information across platforms? (Select two.)
Common Credentials
Asset Credentials
In which two ways is the Assess IT Risk business objective met by the Symantec Control Compliance Suite 11.0? (Select two.)
There are visual historical trends that illustrate current risk exposure to reduce risks over time. E. The objective is met by allowing a decrease in IT risk through shared metrics across assets.
Which type of credentials must be configured if the asset in a data collection is part of a Windows Domain?
Windows Domain Cache credentials
Which two actions can a user perform in the Reports > Predefined folder? (Select two.)
export report templates
schedule reports
In the Check Creation Wizard, the Field Information Browser allows browsing through a list of fields supported by which schema type for the selected data collector?
entity
In addition to Report Data Synchronization and Report Generation, what is another report- related job that can be executed from the Symantec Control Compliance Suite 11.0 console?
Report Data Purge job
Which field is required for manually adding a Windows asset?
Machine Name
An IT Manager requested a query which will find all files that can be run by anyone. Which filter should be built for a UNIX Files query?
add an 'Attributes: Is World Executable?' field
After a report is generated, it can be viewed from which location?
My Reports