Use this quick start guide to collect all the information about Broadcom Endpoint Security Complete Admin Technical Specialist (250-604) Certification exam. This study guide provides a list of objectives and resources that will help you prepare for items on the 250-604 Symantec Endpoint Security Complete Admin R3 Technical Specialist exam. The Sample Questions will help you identify the type and difficulty level of the questions and the Practice Exams will make you familiar with the format and environment of an exam. You should refer this guide carefully before attempting your actual Broadcom Endpoint Security Complete Admin Technical Specialist certification exam.
The Broadcom Endpoint Security Complete Admin Technical Specialist certification is mainly targeted to those candidates who want to build their career in Endpoint Security domain. The Broadcom Symantec Endpoint Security Complete Admin R3 Technical Specialist exam verifies that the candidate possesses the fundamental knowledge and proven skills in the area of Broadcom Endpoint Security Complete Admin Technical Specialist.
Broadcom Endpoint Security Complete Admin Technical Specialist Exam Summary:
| Exam Name | Broadcom Symantec Endpoint Security Complete Admin R3 Technical Specialist |
| Exam Code | 250-604 |
| Exam Price | $250 (USD) |
| Duration | 90 mins |
| Number of Questions | 75 |
| Passing Score | 70% |
| Books / Training |
Symantec Endpoint Security Complete Administration Symantec Endpoint Security Complete – Basic Administration |
| Schedule Exam | Broadcom |
| Sample Questions | Broadcom Endpoint Security Complete Admin Technical Specialist Sample Questions |
| Practice Exam | Broadcom 250-604 Certification Practice Exam |
Broadcom 250-604 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Introduction to Symantec Endpoint Security Complete |
- Understand SES Complete Architecture. - Describe the benefits of SES Complete Cloud-based management. - Describe the various methods for enrolling SES endpoint agents. |
| Configuring SES Complete Security Controls |
- Understand how policies are used to protect endpoint devices. - Understand the Threat landscape and the MITRE ATT&CK Framework. - Describe how SES Complete can be used in preventing an attacker from accessing the environment. - Describe how SES Complete prevents threat execution. - Describe how SES Complete prevents threat persistence. - Describe how SES Complete prevents privilege escalation. - Describe how SES Complete prevents defense evasion. - Describe how SES Complete prevents device discovery. - Describe how SES Complete blocks Command & Control communication. - Describe how SES Complete works to block data exfiltration. - Describe SES Complete content update types and how they are distributed to endpoints. - Describe SES Complete policy versioning and its use. |
| Responding to Threats with ICDm |
- Describe the ICDm security control dashboards and their use. - Understand how ICDm is used to identify threats in the environment. - Describe the incident lifecycle and steps required to identify a threat. - Describe the ways in which ICDm can be used to remediate threats. - Describe how to use ICDm to configure administrative reports. |
| Endpoint Detection and Response |
- Describe the requirements to enable Endpoint Detection and Response in the ICDm management console. - Describe how EDR assists in identifying suspicious and malicious activity. - Describe how EDR aids in investigating potential threats. - Describe the configuration and use of the Endpoint Activity Recorder. - Understand the use of LiveShell for incident response. - Describe how to use EDR to retrieve and submit files for analysis. - Describe how EDR can be used to quarantine endpoint devices. - Describe how EDR can be used to block and quarantine suspicious files. |
| Attack Surface Reduction |
- Describe Behavior Prevalence the use of the SES Complete Behavioral Insights and Policy Tuning Widget. - Describe how the SES Complete Heatmap can be used to prevent unwanted application behaviors. - Describe SES Complete policy adaptations and behavioral tuning. - Describe the SES Complete policy and device groups and how they are used. - Describe the requirements to enable App Control in the ICDm management console. - Describe the process of monitoring drift to further tune App Control policies. |
| Mobile and Modern Device Security |
- Describe the requirements to enable Network Integrity in the ICDm management console. - Describe Network Integrity Policy Configuration and its use. - Describe how Network Integrity works to remediate threats. - Describe how SES Complete's mobile technologies protection against malicious apps. - Describe how SES Complete's mobile technologies protection against malicious networks. |
| Threat Defense for Active Directory |
- Describe the requirements for Threat Defense for Active Directory Installation and Configuration. - Describe the Threat Defense Active Directory policy and its use. - Describe how Threat Defense for Active Directory is used to identify threats. - Describe how Threat Defense for Active Directory protects against misconfigurations and vulnerabilities in an environment. |
| Working with a Hybrid Environment |
- Describe the process for policy migration from SEPM to the ICDm console. - Describe policy precedence in a hybrid configuration. - Understand how Sites and Replication are impacted in a Hybrid environment. - Describe the requirements and process for SEPM integration with the ICDm platform used in a SES Complete Hybrid architecture. |
To ensure success in Broadcom Endpoint Security Complete Admin Technical Specialist certification exam, we recommend authorized training course, practice test and hands-on experience to prepare for Symantec Endpoint Security Complete Admin R3 Technical Specialist (250-604) exam.