1Z0-1070-20 Exam Questions Get Updated [2021] with Correct Answers [Q15-Q37]

1Z0-1070-20 Exam Questions Get Updated [2021] with Correct Answers

Practice 1Z0-1070-20 Questions With Certification guide Q&A from Training Expert ExamTorrent

Oracle 1Z0-1070-20 Exam Syllabus Topics:

Topic	Details
Topic 1	Describe features and benefits of Customer Isolation, Data Encryption, Security Control, Visibility, and Verifiably Secure Infrastructure
Topic 2	Understand how OCI implements Encryption and Key management Configure Cloud to support hybrid security tooling
Topic 3	Design Hybrid Cloud Architecture on OCI using FastConnect, IPSec VPN and Web Application Firewall (WAF) Secure Identity Cloud Service
Topic 4	Describe typical use cases for OCI Vault (Keys and Secrets) Configure Application Gateway Monitor Security Risks
Topic 5	Identify the key capabilities provided by Identity Cloud Service, including the business value Describe typical use cases for CASB Cloud Service
Topic 6	Describe OCI Shared Security Responsibility Module Design for Security and Compliance in OCI
Topic 7	Identify the Cloud Security marketplace including trends, business drivers, and challenges Configure Delegated Authentication
Topic 8	Describe key capabilities provided by Oracle Data Safe Use EBS Asserter, Identity Bridge and Integrations
Topic 9	Describe service requirements and an understanding of the concepts Create and use IAM Policies, Compartments, Policy Inheritance & IAM-Tags
Topic 10	Configure & troubleshoot OCI network resources to secure cloud deployment, this includes VCN, Routing Tables, Security Rules, Gateways, Virtual Firewall
Topic 11	Oracle Cloud Infrastructure Security Fundamentals Cloud Security Business Drivers and Challenges
Topic 12	Describe typical use cases for Multi-Factor Authentication and Identity Federation Configure Adaptive Security and MFA
Topic 13	Execute basic configurations on CASB Cloud Service including users and groups, dashboards, reports and policies

 

NEW QUESTION 15
Which option specifies the two major tasks involved in setting up most cloud applications to be monitored by Oracle CASB Cloud Service?

• A. defining incidents to be monitored and risk events to be reported by Oracle CASB Cloud Service
• B. creating a special account in the application and registering the application in Oracle CASB Cloud Service
• C. defining reports for the application and importing users for the application into Oracle CASB Cloud Service
• D. creating policy alerts for the application and creating a tenant admin for the application in Oracle CASB Cloud Service

Answer: B

 

NEW QUESTION 16
What does Oracle CASB Cloud Service Access Map within Dashboard Summary show?

• A. suspicious activity and threats that have transpired within Oracle CASB and across different geographical regions or the world
• B. up to five Application Instances, including API calls showing the geographical regions where the instance was first implemented
• C. a geography of login attempts within Oracle Identity Cloud Service and Oracle Enterprise Resource Planning Cloud, specifically the successful logins
• D. mobile devices users who are actively using Oracle Identity Cloud Services in a manner that is against Oracle Corporate Usage Policy

Answer: A

 

NEW QUESTION 17
Which service can help you to detect Separation of Duties (SOD) violations in your cloud applications?

• A. Oracle Log Analytics Cloud Service
• B. Oracle Security Monitoring and Analytics Cloud Service
• C. Oracle CASB Cloud Service
• D. Oracle Configuration and Compliance Service

Answer: C

 

NEW QUESTION 18
In your organization, security operations complains about the shortage of resources to handle the number of alerts generated from the security products deployed.
You want to automate the process of handling and remediating the alerts and also want to add contextual awareness to adapt to the threats in real time.
Which would provide the required solution?

• A. Oracle Configuration and Compliance Cloud Service
• B. Oracle Identity Security Operations Center (SOC)
• C. Oracle Log Analytics Cloud Service
• D. Oracle Integration Cloud Service

Answer: B

 

NEW QUESTION 19
Which action to resolve a suspicious event that appears in Risk Events is NOT supported by Oracle CASB Cloud Service?

• A. export the risk event to Splunk for further processing
• B. export the risk event to LogRythm for further processing
• C. create an incident and resolve it in Oracle CASB Cloud Service
• D. create an incident in Oracle CASB Cloud Service and export it to ServiceNow for further processing

Answer: B

 

NEW QUESTION 20
From the Oracle Management Cloud dashboard, you noticed a threat or suspicious browsing activity by a user to execute a brute force attack against an application.
Which two remedial actions will happen implicitly to mitigate some risk? (Choose two.)

• A. Host AV update enforced
• B. Application policy gets created
• C. Multi-factor Authentication (MFA) is imposed
• D. User added to suspicious data access watchlist

Answer: C,D

 

NEW QUESTION 21
Which data CANNOT be captured by running out-of-the box operational or historical reports in Oracle Identity Cloud Service?

• A. Users who use rogue accounts to sign in to Oracle Identity Cloud Service
• B. Users who either have signed in to Oracle Identity Cloud Service or who couldn't sign in to Oracle Identity Cloud Service
• C. How many times user signed in to Oracle Identity Cloud Service
• D. Users who have been assigned to and removed from Oracle Identity Cloud Service administrator roles

Answer: D

 

NEW QUESTION 22
Which two steps are required to integrate Security Monitoring and Analytics Cloud Service with Identity Cloud Service? (Choose two.)

• A. Create a Security Monitoring and Analytics Cloud Service Application in Identity Cloud Service and collect the grant type/Client ID/Client Secret/scope for the application created.
• B. In Security Monitoring and Analytics Cloud Service under Security Admin Select Identity Cloud Service, click Create Identity Context Configuration and specify the grant type/Client ID/Client Secret/scope information collected from Identity Cloud Service.
• C. Create a trusted application in Identity Cloud Service and collect the grant type/Client ID/Client Secret/scope for the application created.
• D. In Security Monitoring and Analytics Cloud Service under Security Admin Select Identity Context, click Create Identity Context Configuration and specify the grant type/Client ID/Client Secret/scope information collected from Identity Cloud Service.

Answer: A,D

 

NEW QUESTION 23
Which two users should run Security Content Automation Protocol (SCAP) assessments? (Choose two.)

• A. root
• B. privileged sudo user
• C. oracle
• D. opc

Answer: A,B

 

NEW QUESTION 24
Can you customize which of your identity providers appear on the Sign In page when users are accessing Oracle Identity Cloud Service either locally or through a specific app?

• A. Yes, by using identity provider policies.
• B. No, because users should always sign in using their local authentication credentials.
• C. No, because any identity provider that's set to appear in the Sign In page will be displayed.
• D. Yes, by using sign-on policies.

Answer: A

 

NEW QUESTION 25
How does a threat progression get identified in Identity SOC?

• A. Oracle Orchestration Cloud Service receives the threat information from Oracle Security Monitoring Cloud Service and Oracle Identity Cloud Service, and various sources based on the information received from other sources creates a threat in Oracle CASB Cloud Service Threat dashboard.
• B. Configuration and Compliance Cloud Service identifies the Configuration drift and forwards it to Oracle CASB Cloud Service, and based on user behavior identified from Oracle Identity Cloud Service creates the threat based on the risk score in Oracle CASB Cloud Service Threat dashboard.
• C. Oracle Security Monitoring and Analytics Cloud Service receives the threat intel from various data sources including Oracle Identity Cloud Service and Oracle CASB Cloud Service, and based on user behavior creates a threat based on the risk score in Oracle Security Monitoring and Analytics Cloud Service Threat dashboard.
• D. Oracle CASB Cloud Service receives the threat intel from various data sources including Oracle Identity Cloud Service, and based on user behavior creates a threat in the Oracle CASB Cloud Service Threat Dashboard.

Answer: D

 

NEW QUESTION 26
One of the required tasks for setting up Oracle Security Monitoring and Analytics is "Add Log Analytics entities". After updating a file that contains the entity definition that you want to add, which omcli command needs to be run?

• A. <AGENT_BASE_DIR>/agent_inst/bin/omcli register agent FILENAME
• B. <AGENT_BASE_DIR>/agent_inst/bin/omcli setproperty agent FILENAME
• C. <AGENT_BASE_DIR>/omcli setproperty agent FILENAME
• D. <AGENT_BASE_DIR>/agent_inst/bin/omcli add_entity agent FILENAME

Answer: D

 

NEW QUESTION 27
Which three security services are provided in the Identity SOC framework? (Choose three.)

• A. Oracle Configuration and Compliance Cloud Service
• B. Oracle Log Analytics Cloud Service
• C. Oracle CASB Cloud Service
• D. Oracle Orchestration Cloud Service
• E. Oracle Application Performance Monitoring Cloud Service

Answer: A,C,D

 

NEW QUESTION 28
Which key feature must be part of a modern Security Operations Center (SOC)?

• A. Automation and incident response orchestration
• B. Mobile Device Management along with adaptive access management
• C. Integration with the business through dashboards and reports by the implementation of Big Data and Machine Learning Techniques
• D. System access life cycle management

Answer: C

 

NEW QUESTION 29
You want to configure Oracle Identity Cloud Service so that any users who use an IP address that comes from a country where hacking is rampant are prevented from accessing Oracle Identity Cloud Service.
How would you accomplish this?

• A. Define a network perimeter, assign it to a rule of a sign-on policy, set the access for the rule to be denied, and define risk-related conditions in the rule associated with the user's location.
• B. Define a network perimeter.
• C. Define a network perimeter, assign it to a rule of a sign-on policy, and set the access for the rule to be denied.
• D. Define a network perimeter and assign it to a rule of a sign-on policy.

Answer: C

 

NEW QUESTION 30
How can you prevent a user from signing in to Oracle Identity Cloud Service if they are using a device that Oracle Identity Cloud Service does NOT recognize?

• A. Configure the bridge
• B. Configure Adaptive Security
• C. Configure identity provider policies
• D. Configure Multi-Factor Authentication

Answer: C

 

NEW QUESTION 31
Which industry-standard benchmark engine needs to be configured with Oracle Configuration and Compliance Cloud Service?

• A. Secure Technical Implementation Guides (STIGs)
• B. Security Content Automation Protocol (SCAP)
• C. General Data Protection Regulation (GDPR)
• D. Open Vulnerability and Assessment Language (OVAL)

Answer: B

 

NEW QUESTION 32
Which Oracle CASB Cloud Service feature could you use to quickly determine whether there is a concentration of security threats that is originating from a specific geographic area?

• A. Risk Events
• B. Reports
• C. Access Map
• D. Key Security Indicators

Answer: C

 

NEW QUESTION 33
Which two statements are true about Identity SOC? (Choose two.)

• A. Oracle Identity Cloud Service provides SSO for Cloud and on-premises applications.
• B. Oracle CASB Cloud Service provides security controls for on-premises and Cloud applications.
• C. Oracle Identity Cloud Service provides SSO only for Cloud applications.
• D. Oracle Identity Cloud Service provides security controls only for Cloud applications such as IaaS and SaaS.

Answer: A,B

 

NEW QUESTION 34
Which two are the main differentiators of Oracle Identity Cloud Service NOT supported by first-generation Identity-as-a-Service (IDaaS) vendors? (Choose two.)

• A. It provides support for Open Standard.
• B. It implements OAuth by default for easy integration with Oracle CASB Cloud Service and Oracle Security Monitoring and Analytics Cloud Service.
• C. It provides the ability to manage the life cycle of identities on hybrid environments.
• D. It provides support for multiple Software-as-a-Service (SaaS) vendors.

Answer: A,B

 

NEW QUESTION 35
You want a user to perform the following administrative tasks in Oracle Identity Cloud Service: customizing the interface, default settings, notifications, and the password policy; configuring Multi-Factor Authentication (MFA); and managing bridges, identity providers, and trusted partner certificates.
To which administrator role do you assign this user?

• A. Audit administrator
• B. Application administrator
• C. Security administrator
• D. User administrator

Answer: C

 

NEW QUESTION 36
Which is a major concern with regards to Line of Business (LOB) buyers when acquiring cloud services?

• A. Customers are acquiring services that may not be in compliance with external regulations.
• B. Line of Business (LOB) buyers were buying IT services without notifying their security team.
• C. End users have no visibility over an organization's cloud strategy.
• D. Line of Business (LOB) buyers do not have executive approval to acquire such services.

Answer: D

 

NEW QUESTION 37
......

Prepare Top Oracle 1Z0-1070-20 Exam Audio Study Guide Practice Questions Edition: https://www.examtorrent.com/1Z0-1070-20-valid-vce-dumps.html