Pass Authentic Oracle 1z0-1070-21 with Free Practice Tests and Exam Dumps [Q27-Q44]

November 1, 2022 admin 0 Comments

Rate this post

Pass Authentic Oracle 1z0-1070-21 with Free Practice Tests and Exam Dumps

New 1z0-1070-21 Exam Questions Real Oracle Dumps

Q27. Which three are key business benefits of Oracle Security Monitoring and Analytics (SMA) Cloud Service?
(Choose three.)

Greater SOC Efficiency

Improved Securityand Risk Posture

Synchronize with on-premises directory structures

Automate threat prevention

Rapid Time to Value

Q28. Which three are the main goals of Oracle Identity Security Operations Center (SOC)Framework? (Choose three.)

fast and easy deployment of on-premises services through a centralized console

a single pane of glass to manage security threats across their on-premises and cloud environments

the ability to monitor heterogeneous environments

a suite of integrated solutions that work together, and not have to manage multiple solutions

the ability to integrate different services through open standards

Q29. Suspicious events that you or Oracle CASB Cloud Service determine to be serious, result in an entry in which of these pages?

Configuration,Threat Management

Risk Events

Incidents

Reports

Q30. You want toimplement Oracle Configuration and Compliance Cloud Service for the hybrid cloud environments in your organization.
Which two benefits will you get from implementing this? (Choose two.)

integration of the different services using open standards

Assessment, scoring, and reporting of the compliance in an enterprise can be automated

Compliance violation dashboard displays the most severe violations

application-wide assessment of compliance score

Q31. How do you configure Oracle Identity Cloud Service so that user accounts will never be locked because of consecutive, unsuccessful login attempts?

Change the value ofthe Max unsuccessful MFA attempts field to 0.

Change the time of the lockout duration interval to 0 seconds.

Change the value of the Account Lock Threshold field to 0.

Modify a rule of the default sign-on policy.

Q32. A customer use case requires the second Factor Email during Oracle Identity Cloud Service Authentication process for a group of users only. The security administrator, signed in Oracle Identity Cloud Service console, enabled the email factor, edited the default sign-on policy and added a new sign-on rule. The new sign-on rule included the group name in the member of these groups conditions and prompt for additional factor every time. The administrator saved both the rule and the policy.
After executing this configuration, why does the email factor NOT appear to users from that group?

The default Sign-on Policy can’t be changed.

The security administrator needs to specify the list of users instead of the group name.

The Passcode Length and Validity Duration of the email factor don’t have a default value.

The security administrator didn’t change the order of the sign-on rules.

Q33. If you want to reduce the number of “false positives” appearing in Risk Events, which action would NOT help?

filtering custom policy alerts to exclude trusted geographic areas

adding trusted users to the User Exclusion List

adding suspicious IP addresses to a “blacklist”

changing custom policy alerts with Resource or Action set to “Any” to target specific resources and actions

Q34. In which Oracle Identity SOC component can you view threats like file integrity anomaly and exfiltrationattacks and the auto remediation action taken for an application?

Oracle CASB Cloud Service

Oracle Identity Cloud Service

Oracle Configuration and Compliance Cloud Service

Oracle Security Monitoring and Analytics Cloud Service

Q35. Which two steps are needed to integrate Oracle CASB Cloud Servicewith Oracle Identity Cloud Service?
(Choose two.)

In Oracle CASB Cloud Service navigate to Configuration and then to Identity Management providers.
Select Oracle Identity Cloud Service and specify the Instance name/Client ID/Client Secret and URL to the Provider.

Create an Oracle CASB Cloud Service application in Identity Cloud Service and collect the Client ID/Client Secret for the application created.

Create a trusted application in Identity Cloud Service and collect the Client ID/Client Secretfor the application created.

In Oracle CASB Cloud Service navigate to Configuration and then to Identity Management providers.
Select Oracle Identity Cloud Service and specify the Client ID/Client Secret.

Q36. Click to the exhibit.

Which three items fit on the high-level architecture diagram?

1 (Log Analytics Cloud Service), 2 (Database Security Vault), 3 (CASB Cloud Service)

1 (CASB CloudService), 2 (Security Monitoring and Analytics Cloud Service), 3 (Log Analytics Cloud Service)

1 (CASB Cloud Service), 2 (Log Analytics Cloud Service), 3 (Security Monitoring and Analytics Cloud Service)

1 (Security Monitoring and Analytics Cloud Service), 2 (CASB Cloud Service), 3 (Log Analytics Cloud Service)

Q37. You want to configure Oracle Identity Cloud Service so that any users who use an IP address that comes from a country where hacking is rampant are prevented from accessing Oracle Identity Cloud Service.
How would you accomplish this?

Define a network perimeter, assign it to a rule of a sign-on policy, and set the access for the rule to be denied.

Define a network perimeter, assign it to a rule of asign-on policy, set the access for the rule to be denied, and define risk-related conditions in the rule associated with the user’s location.

Define a network perimeter and assign it to a rule of a sign-on policy.

Define a network perimeter.

Q38. Which two issues can be resolved by using Oracle Configuration and Compliance Cloud Service? (Choose two.)

A single timely complianceposture across the enterprise

Manual compliance attestation to check rules and benchmarks

Assessments across multiple data centers for a timely global compliance posture

Extend pre-built benchmarks with custom rules to meet requirements

Q39. From the Oracle Management Cloud dashboard, you noticed a threat or suspicious browsing activity by a user to execute a brute force attack against an application.
Which two remedial actions will happen implicitly to mitigate some risk? (Choose two.)

Multi-factor Authentication (MFA) is imposed

User added to suspicious data access watchlist

Application policy gets created

Host AV update enforced

Q40. Which feature do you activate in Oracle Identity Cloud Service so that users can use their Microsoft Active Directory passwords to sign in to access resources that are protected by Oracle Identity Cloud Service?

The Import utility

The bridge

Identity Provider

Delegated Authentication

Q41. Which two types of severity levels can alertsbe generated in, when using Security Monitoring and Analytics (SMA) Cloud Service? (Choose two.)

Error

Blackout

Debug

Critical

Warning

Q42. Your company is in thebanking industry and offers financial services to the public online. You just became aware of a Phishing attack on your customers. This attack prompts your clients to log into fake websites with their password. As the system administrator, what can you turn on with Oracle Security Monitoring and Analytics Cloud Service that could help protect your clients?

Lock all user accounts

Send out notifications to clients to change their password.

Turn on multi factor authentication

Disable online access

Q43. In your organization you are planning to implementOracle Identity SOC as a cloud security solution.
What are two reasons for using an Identity SOC Solution? (Choose two.)

It incorporates the threat intelligence feeds from IP blacklists and known vulnerable databases only.

It uses adaptive ML-basedanalytics with identity.

It provides the ability to have a hybrid enterprise application solution.

It provides multiple tools for data operations.

Q44. Which Oracle CASB Cloud Service feature could you use to quickly determine whether there is a concentration of security threats that is originating from a specific geographic area?

Access Map

Key Security Indicators

Risk Events

Reports

Loading …

Oracle 1z0-1070-21 Exam Syllabus Topics:

Topic	Details
Topic 1	Design and implement a logging and logging analytics solution Configure Dynamic Groups, Network Sources, and Tag-Based Access Control
Topic 2	Describe use case for Penetration and Vulnerability Testing Cloud Security Business Drivers and Challenges
Topic 3	Understand and implement Security Zones and Security Advisor Identify the Cloud Security use cases, challenges, and trends
Topic 4	Describe key capabilities provided by Data Safe Configure and manage Secrets in OCI Vault
Topic 5	Design a scalable authorization model with users, groups, and policies Configure Network Security Groups (NSGs) and Security Lists
Topic 6	Configure security for OCI storage services Implement conditional and advanced policies
Topic 7	Understand MFA, Identity Federation, and SSO Execute configurations on Cloud Guard Use Compartments to isolate resources
Topic 8	Describe OCI Shared Security Responsibility Model Secure connectivity of virtual networks (DRG v2, Peering)
Topic 9	Configure security for Oracle Autonomous Database and DB Systems Discuss typical use cases for Cloud Guard
Topic 10	Implement security monitoring and alerting Configure and manage Keys in OCI Vault