pass4sure ibm 000-695

By PassGuide-IBM Study Guide | Oct 11, 2008
Visited 102 times, 1 so far today

Fundamentals of Enterprise Sol.Using IBM Tivoli Security : 000-695 Exam
Known also as the IBM Fundamentals of Enterprise Solutions Using IBM Tivoli Security (000-695), this exam plays an integral role in obtaining your certification. All IBM certification exams are extremely detailed and cover many different technological areas. We designed the 000-695 questions and answers for this very purpose, to prepare you for the unexpected. Beyond the testing center, the skills you learn and the knowledge you confirm using the 000-695 practice exams and exam simulators will translate directly into your daily work environment.
Product Description

Exam Number/Code: 000-695

Exam Name:Fundamentals of Enterprise Sol.Using IBM Tivoli Security

“Fundamentals of Enterprise Sol.Using IBM Tivoli Security”, also known as 000-695 exam, is a IBM certification. With the complete collection of questions and answers, Pass4sure has assembled to take you through 80 questions to your 000-695 Exam preparation. In the 000-695 exam resources, you will cover every field and category in IBM certifications helping to ready you for your successful IBM Certification.

Question: 1
An exhaustive list of business processes has been gathered from the customer.

A subset of the customer tasks performed relating to user management includes:
- Receive new user identity requests
- Receive requests for changes to user identities
- Use access policies to evaluate requests
- Gather approvals
- Place users in groups
- Update accounts
- Synchronize passwords
There is an important part of a good user management process that is missing. What is the missing process step?

A. Back up directory information.
B. Check that existing accounts are valid.
C. Verify user management process ownership.
D. Grant or block access to programs based on access policy.
Answer: B Question: 2
Interviews with the customer indicate a concern that they are not reacting quickly enough to possible attacks coming from the Internet or from within their own company. They have a number
of administrators who receive daily events and alerts if something unusual has happened but no
one can remember the last time any significant investigation or action was started based on these alerts and events. What are some key words that would apply, as you consider what to document about achieving possible higher levels of maturity?

A. access control, firewall, and honey pot
B. provisioning, auditing, and content management
C. correlation, incident management, and automation
D. identification, policy automation, and agent less connection
Answer: C Question: 3
Which three business goals are direct results of a successful security management process?
(Choose three.)

A. Increased data integrity
B. Increased data duplication
C. Reduced impact of threats
D. Eliminated any risk of frauds
E. Reduced TCO (Total Cost of Ownership) for account management
F. Decreased risk awareness among employees not working in the IT security department
Answer: A, C, E Question: 4
Which security capability relates most strongly to the customer business process eployment of new or updated application initiatives?

A. Firewalls – because they protect the deployed applications from attack.
B. PKI – because it makes it easy to drive single sign-on to the deployed applications.

C. Compliance management – because the application is guaranteed to be running in a safe
environment.
D. Callable authentication and access services – because that eliminates the need to include authentication and access code in the applications.
Answer: D Question: 5
Which information is necessary in order to determine a customer’s IT environment infrastructure?

A. Last Enterprise inventory
B. Enterprise network topology
C. Company’s most recent Asset declaration
D. Number of security personnel in the Enterprise
Answer: B Question: 6
In terms of identity management maturity, what is the proper order – with the highest maturity level (1.) at the top and the lowest maturity level (4.) on the bottom?

A. 1. Extending security automation to business partners
2. Password management
3. Distributed administration
4. Provisioning approval and process automation
B. 1. Password management
2. Distributed administration
3. Provisioning approval and process automation
4. Extending security automation to business partners
C. 1. Extending security automation to business partners
2. Distributed administration
3. Provisioning approval and process automation
4. Password management
D. 1. Provisioning approval and process automation
2. Distributed administration
3. Password management
4. Extending security automation to business partners
Answer: C Question: 7
In gathering information about the customer’s IT organization, the customer has mentioned the
Operations staff, but has not included any details. Which three types of information would be useful when adding Operations to a diagram of the IT organization? (Choose three.)

A. SLAs
B. Location(s)
C. Reporting chain
D. Hours of operation
E. Relation to Help Desk

Answer: B, C, E Question: 8

In order to correctly understand the data protection requirements, which two groups of people
must be interviewed? (Choose two.)

A. All managers
B. IT department personnel
C. Business Unit management
D. Legal department personnel
E. Human Resource department
Answer: C, D Question: 9
Selecting from the list of options below, what would need to be accomplished during an initial meeting with the customer when reviewing a company organizational chart?

1. Identify key decision makers
2. Document the key players and their roles
3. Determine the products to be used
4. Proof of Concept of the products in the solution

A. 3,4
B. 2,4
C. 1,3
D. 1,2
Answer: D Question: 10
As you review a list of a customer business processes, you notice that the only time they describe anything to do with passwords is in the context of some work they have done to synchronize
passwords across a number of platforms. Which three options will help fill the gap in their approach to passwords? (Choose three.)

A. password mirroring
B. switch user capability
C. secure password pickup
D. challenge-response capability
E. authentication step-up capability
F. user self-care for updating passwords
Answer: C, D, F Question: 11
In discussions with the customer to determine their IT security process maturity levels, you encounter a number of interview subjects who seemed proud of their level of measuring the compliance of their servers and desktops to pre-established security policy. They are using IBM
Tivoli Security Compliance Manager and they know which servers/desktops are in compliance
and which are not. Non-compliant servers/desktop owners are notified of the steps they need to take to achieve compliance.
Which two additional capabilities would further enhance the customer’s security process maturity level in this area? (Choose two.)

A. The ability to remove the user’s accounts until they can demonstrate compliance.
B. The ability to encrypt select files on offending server/desktop systems?disks, until they can demonstrate compliance.

C. The ability to remove Web single sign-on until the user can demonstrate that their machine is
back in compliance.
D. The ability to provide a entry service that prevents non-compliant machines from connecting to the network, until they achieve compliance.
E. The ability to offer push-button compliance options, simplifying the steps for users to get their non-compliant servers/desktops in compliance.
Answer: D, E Question: 12
Information on the current IT organization has been gathered in order to create a diagram of the
organization. This information includes :

- divisions
- location(s) / geographical information
- reporting chains
What is another piece of essential information? A. Business Units
B. e-mail addresses
C. Help Desk functions
D. If the customer has a dedicated Operations Center
Answer: A Question: 13
In order to document how the IT organization coordinates their efforts, which two elements should be considered in conjunction with how IT conducts its business? (Choose two.)

A. sales
B. financials
C. human resource
D. key performance indicators
E. strategic alignment with business /objectives
Answer: D, E Question: 14
Which statement describes a risk management scenario?

A. server A holds data that only users in special class A can access.
B. banks nightly reconciliation data must be ciphered while sitting in message queues.
C. unless we accomplish Web single sign-on, we are likely to face dissatisfied users and high help-desk costs.
D. all incoming security alerts and events must be analyzed quickly, in order to react to possible attacks on systems/networks.
Answer: D Question: 15
When the pen Group certifies an IBM product, what advantage does the certification bring to
IBM?

A. IBM can begin to publish certification exam tests of that product.

*pass4sure ibm 000-695 Questions and Answers : 80 questions
* Updated: October 2nd , 2008
* Price: $159.99 $99.99

Free down:Testking ibm 000-695
Free down:Pass4sure ibm 000-695