Free Netskope Certified Cloud Security Integrator Exam NSK200 Exam Practice Test

You want the ability to perform automated remediation of misconfigurations on GitHub, Microsoft 365, Salesforce, ServiceNow, and Zoom.

• Netskope Infrastructure as a Service
• Netskope Remote Browser Isolation
• Netskope Cloud Firewall
• Netskope SaaS Security Posture Management

You discover the ongoing use of the native Dropbox client in your organization. Although Dropbox is not a corporate-approved application, you do not want to prevent the use of Dropbox. You do, however, want to ensure visibility into its usage.

• Change Windows and Mac steering exception actions to use Tunnel mode and set Netskope as the source IP address for SSO services.
• Modify the existing tenant steering exception configuration to block the Dropbox native application to force users to use the Dropbox website.
• Remove all Dropbox entries from the tenant steering SSL configuration entirely.
• Create a new tenant steering exception type of Destination Locations that contains the Dropbox
• application.

You are given an MD5 hash of a file suspected to be malware by your security incident response team. They ask you to offer insight into who has encountered this file and from where was the threat initiated. In which two Skope IT events tables would you search to find the answers to these questions? (Choose two.)

• Application Events
• Network Events
• Alerts
• Page Events

You want to provide malware protection for all cloud storage applications. In this scenario, which action would accomplish this task?

• Create a real-time threat protection policy with a category of Cloud Storage.
• Apply a data protection profile.
• Apply a CTEP profile.
• Create an API threat protection policy with a category of Cloud Storage.

Your company has many users that are remote and travel often. You want to provide the greatest visibility into their activities, even while traveling.Using Netskope, which deployment method would be used in this scenario?

• Use a Netskope client.
• Use an IPsec tunnel.
• Use a GRE tunnel.
• Use proxy chaining.

You are having issues with fetching user and group Information periodically from the domain controller and posting that information to your tenant instance in the Netskope cloud. To begin the troubleshooting process, what would you Investigate first in this situation?

• On-Premises Log Parser
• Directory Importer
• DNS Connector
• AD Connector

Your customer currently only allows users to access the corporate instance of OneDrive using SSO with the Netskope client. The users are not permitted to take their laptops when vacationing, but sometimes they must have access to documents on OneDrive when there is an urgent request. The customer wants to allow employees to remotely access OneDrive from unmanaged devices while enforcing DLP controls to prohibit downloading sensitive files to unmanaged devices.Which steering method would satisfy the requirements for this scenario?

• Use a reverse proxy integrated with their SSO.
• Use proxy chaining with their cloud service providers integrated with their SSO.
• Use a forward proxy integrated with their SSO.
• Use a secure forwarder integrated with an on-premises proxy.

The risk team at your company has determined that traffic from the sales team to a custom Web application should not be inspected by Netskope. All other traffic to the Web application should continue to be inspected. In this scenario, how would you accomplish this task?

• Create a Do Not Decrypt Policy using User Group and Domain in the policy page.
• Create a Do Not Decrypt Policy using Application in the policy page and a Steering Exception for Group
• Create a Do Not Decrypt Policy using Destination IP and Application in the policy page.
• Create a Do Not Decrypt Policy using Source IP and Application in the policy page.

You have deployed a development Web server on a public hosting service using self-signed SSL certificates. After some troubleshooting, you determined that when the Netskope client is enabled, you are unable to access the Web server over SSL. The default Netskope tenant steering configuration is in place.In this scenario, which two settings are causing this behavior? (Choose two.)

• SSL pinned certificates are blocked.
• Untrusted root certificates are blocked.
• Incomplete certificate trust chains are blocked.
• Self-signed server certificates are blocked.

Your company is using on-premises QRadar as a SIEM solution. They are replacing it with Rapid7 in the cloud. The legacy on-premises QRadar will eventually be decommissioned. Your IT department does not want to use the same token that QRadar uses.

• Netskope does not support multiple REST API tokens.
• You must use Netskope REST API v1 to support multiple tokens to share events.
• You must use Netskope REST API v2 to support multiple tokens to share events.
• You must use an Advanced Threat Protection license to support multiple tokens to share events.