Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

DRY RUN FALCON COMPLETE OB SLIDES > OB SLIDE PRESENTATION QUESTIONS > Flashcards

OB SLIDE PRESENTATION QUESTIONS Flashcards

1
Q

Can we modify the Playbook for Detection Responses?
(customer that doesn’t care about Warranty so asks to make everything custom)

A

?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Why may Time to Live vary?

A

?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is OverWatch?

A

CrowdStrikes Threat Hunting Team. Provides 24/7 support to stop hidden and advanced attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

RFM covered by Warranty?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

If i have some in Cautious would that mean my entire account has no warranty

A

yes,

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Deployment help?

A

deployment is on your and your teams play, however if you run into trouble then we can create a support ticket

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is System Assignment

A

?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How long should I be in Cautious policy?

A

the less amount as time as possible is recommended

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How long does FC take to go live?

A

1 week

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How can I provide you my current exclusion list from Symantec?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What happens when my email gets compromised?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Will keep calling until someone answers for Critical escalations?

A

Yes. Everyone that will be contacted will be in order of precedence by the Appendix B document.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

SA will monitor the RFM?

A

?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What’s a “Incident” ?

A

swat team vs detectives. we prevent incidents in real time and not going back to historically analyze any items and

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Call for Only “Critical Detection? For every Critical Detection”?

A

?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Phone call for every Critical Detection?

A

?

17
Q

What if I have Falcon Mobile, what user permission do I need?

A

?

18
Q

CoinMinner for PUP??

A

?

19
Q

Couple weeks notice for Pen testing notice…????

A

if thats the case Falcon will continue to run as normal and if you would like to make any modifications let us know to action or not action.

20
Q

I was told that we can keep our current AV?

A

caution them from running side by side could cause performance issues or take action over the other and cause operational issues. However it is recommended to not run your current AV be side by side with Falcon Complete

21
Q

Active - no prod servers????

A

?

22
Q

Postures - Cautious for New customers with AVs?

A

Its good to maintain to avoid triggering the AV until full Falcon Complete has been integrated on your hosts.

23
Q

Response SLA - ?

A

?

DRY RUN FALCON COMPLETE OB SLIDES (1 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions