P2090-739 Exam Questions

What is a Guardium vulnerability assessment (VA)?

What is Guardium's primary storage mechanism for logs and audit information?

Which termination mechanism is most suitable for monitoring privileged users where preventing data leaks is much more important than latency?

Which of the following Guardium facilities is used to import external data?

In a Guardium environment where data servers can talk to the collector, what is the relationship between the S-TAP and the collector appliance?

What are the four types of tests that can be used in a Guardium vulnerability assessment?

What is the effect of enabling the Log Policy Violation option when creating a new correlation alert?

Which of the following problems is the Application User Translation feature designed to help with?

Which of the following native SQL commands is required to link external data to internal data?

Which of the following is a valid use case for scheduled database auto-discovery?

Which of the following is true about applying CAS templates to CAS hosts?

What is the simplest definition of a Guardium domain?

What is the purpose of Guardium's Application Events API?

A developer has recently created a temporary database to test her new human resources management application. To test it in a production-like environment, she copies the MANAGERS t...

Which of the following logging actions will not log the full SQL and parameter values?

How is authentication and encryption implemented between collectors, aggregators and the Central Policy Manager in a multi-tier Guardium environment?

When the S-TAP is in open mode, what would you need to configure to enforce a termination without any data leaking?

How would a DBA or developer notify Guardium using the Application User API that an application user has taken or given up control of a data server connection?

An audit administrator wants to track database changes performed by database administrators and reconcile these changes with an existing change tracking database. Which Guardium fe...

What are the different types of rules available to be used with Guardium policies?

Which of the following statements is true about queries and reports in Guardium?

What is a security policy?

Which of the following steps must be taken before a custom table can be defined on the Guardium appliance?

Which of the following cannot be monitored using CAS?

Which of the following best describes the role of the aggregator in a Guardium environment?

What is one of the advantages of S-TAP over traditional SPAN implementation?

What is Guardium's Database Protection Subscription Service?

Which of the following is often required to ensure that Guardium can identify a user's credentials through the Stored Procedure Monitoring feature?

Data are collected through a security policy using non-selective audit trail that only consists of rules with alert action. Which of the following cannot be viewed when reporting o...

A database known to contain the medical records of a foreign head of state is accessed at 1:30AM. No security mechanism is installed and so this highly sensitive information is lea...

The query builder contains all of the following panes except for:

Which of the following is not a valid termination action for an extrusion rule?

Which of the following is TRUE about Guardium's entitlement reports?

Which of the following components collects and parses the live database traffic used to trigger a real-time alert when a security policy rule is broken?

Which of the following items cannot be identified using database auto-discovery?

Which of the following actions is NOT a known benefit of using correlation alerts?

How does Guardium handle correlation alerts?

What is the name of the software-based Guardium probe that can be configured on a supported application server to capture web credentials?

Which Guardium appliance cannot be managed?

When planning the deployment for Data Activity Monitoring (DAM) there is a need to determine the location of the various Guardium solution components (I.e. Agents, appliances). Whi...

Before uninstalling A-TAP, which procedure must be done?

Which appliance type(s) can serve as a Guardium host for S-TAPs?

Which GIM component controls starting and stopping managed agents on UNIX?

How does the database entitlement information get pulled into the Guardium appliance?

Which one is NOT a Guardium vulnerability assessment test type?

Which is NOT a valid End User identification option with Guardium?

In order to add a user and associate the user to a role like "Admin", "CAS", "CLI", "DBA", or "InfoSec", you would login to the Guardium Appliance as what user?

What Guardium administration tool or utility can be used to obtain network statistics, such as throughput and current connection?

What reporting domain in Guardium will have information of the database connection being terminated by Guardium as part of Data access level control / blocking functionality?

Which component of the Guardium solution makes a decision to terminate database connection as part of Data access level control / blocking functionality?