SY0-701 · Question #901
SY0-701 Question #901: Real Exam Question with Answer & Explanation
The correct answer is C: Ensure the company's name servers use DNS filtering, and configure systems to use a. A DNS filter blocks lookups to known bad domains, stopping users from reaching them, and a centralized TLS (HTTPS) inspection proxy lets the organization decrypt/inspect HTTP/HTTPS traffic for malicious content before re‐encrypting it outbound.
Question
A Chief Information Security Officer (CISO) of an enterprise environment wants to ensure that users cannot navigate to known malicious domains. The CISO also wants web traffic on the network inspected for malicious activity. Which of the following actions should the CISO take?
Options
- APlace the intrusion system into IPS mode to block incoming malicious domains, and ensure
- BDeploy EDR software on all company systems, and perform user behavior analytics to detect
- CEnsure the company's name servers use DNS filtering, and configure systems to use a
- DSet up a NAC on all segments of the company network, and set the network firewall to block
Explanation
A DNS filter blocks lookups to known bad domains, stopping users from reaching them, and a centralized TLS (HTTPS) inspection proxy lets the organization decrypt/inspect HTTP/HTTPS traffic for malicious content before re‐encrypting it outbound.
Community Discussion
No community discussion yet for this question.