NSE7_OTS-7.2試験無料問題集（70題）「Fortinet NSE 7

出題：1

An OT administrator deployed many devices to secure the OT network. However, the SOC team is reporting that there are too many alerts, and that many of the alerts are false positive. The OT administrator would like to find a solution that eliminates repetitive tasks, improves efficiency, saves time, and saves resources.
Which products should the administrator deploy to address these issues and automate most of the manual tasks done by the SOC team?

A. FortiSandbox and FortiSIEM

B. FortiSOAR and FortiSIEM

C. FortiSIEM and FortiManager

D. A syslog server and FortiSIEM

正解：B 解答を投票する

出題：2

An OT network architect must deploy a solution to protect fuel pumps in an industrial remote network. All the fuel pumps must be closely monitored from the corporate network for any temperature fluctuations.
How can the OT network architect achieve this goal?

A. Configure both fuel server and FortiSIEM with a single-pattern temperature performance rule on the corporate network.

B. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature security rule on the corporate network.

C. Configure a fuel server on the corporate network, and deploy a FortiSIEM with a single pattern temperature performance rule on the remote network.

D. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature performance rule on the corporate network.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

As an OT network administrator you are managing three FortiGate devices that each protect different levels on the Purdue model To increase traffic visibility you are required to implement additional security measures to detect protocols from PLCs Which security sensor must you implement to detect protocols on the OT network?

A. Deep packet inspection (DPI)

B. Endpoint Detection and Response (EDR)

C. Application control (AC)

D. Intrusion prevention system (IPS)

正解：C 解答を投票する

出題：4

Refer to the exhibits.

Which statement is true about the traffic passing through to PLC-2?

A. IPS must be enabled to inspect application signatures.

B. The application filter overrides the default action of some IEC 104 signatures.

C. SSL Inspection must be set to deep-inspection to correctly apply application control.

D. IEC 104 signatures are all allowed except the C.BO.NA 1 signature.

正解：B 解答を投票する

出題：5

Refer to the exhibit.
Which statement is true about application control inspection?

A. The parent signature takes precedence over the child application signature.

B. The industrial application control inspection process is unique among application categories.

C. You can control security actions only on the parent-level application signature

D. Security actions cannot be applied on the lowest level of the hierarchy.

正解：C 解答を投票する

出題：6

The OT network analyst run different level of reports to quickly explore failures that could put the network at risk. Such reports can be about device performance. Which FortiSIEM reporting method helps to identify device failures?

A. Business service reports

B. Device inventory reports

C. CMDB operational reports

D. Active dependent rules reports

正解：B 解答を投票する

出題：7

Refer to the exhibit.

PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT cannot send traffic to each other.
Which two statements about the traffic between PCL-1 and PLC-2 are true? (Choose two.)

A. The switch on FGT-2 must be hardware to implement micro-segmentation.

B. Micro-segmentation on FGT-2 prevents direct device-to-device communication.

C. Traffic must be inspected by FGT-EDGE in OT networks.

D. FGT-2 controls intra-VLAN traffic through firewall policies.

正解：B,D 解答を投票する

NSE7_OTS-7.2試験無料問題集「Fortinet NSE 7 - OT Security 7.2 認定」