NSE7_OTS-7.2試験無料問題集（74題）「Fortinet NSE 7

出題：1

What are two critical tasks the OT network auditors must perform during OT network risk assessment and management? (Choose two.)

A. Planning a threat hunting strategy

B. Implementing strategies to automatically bring PLCs offline

C. Evaluating what can go wrong before it happens

D. Creating disaster recovery plans to switch operations to a backup plant

正解：A,D 解答を投票する

出題：2

An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site.
Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources. As the OT network administrator, what is the best scenario to provide external access to the third- party company while continuing to secure the ICS networks?

A. Split the edge FortiGate device into multiple logical devices to allocate an independent VDOM for the third-party company.

B. Configure outbound security policies with limited active authentication users of the third-party company.

C. Implement an additional firewall using an additional upstream link to the internet.

D. Create VPN tunnels between downstream FortiGate devices and the edge FortiGate to protect ICS network traffic.

正解：A 解答を投票する

出題：3

To increase security protection in an OT network, how does application control on ForliGate detect industrial traffic?

A. By inspecting applications only on nonprotected traffic

B. By inspecting software and software-based vulnerabilities

C. By inspecting applications with more granularity by inspecting subapplication traffic

D. By inspecting protocols used in the application traffic

正解：A 解答を投票する

出題：4

Which three Fortinet products can be used for device identification in an OT industrial control system (ICS)? (Choose three.)

A. FortiAnalyzer

B. FortiManager

C. FortiNAC

D. FortiSIEM

E. FortiGate

正解：C,D,E 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Refer to the exhibit. You are assigned to implement a remote authentication server in the OT network. Which part of the hierarchy should the authentication server be part of?

A. Access

B. Core

C. Cloud

D. Edge

正解：D 解答を投票する

出題：6

Which three common breach points can be found in a typical OT environment? (Choose three.)

A. Hard hat

B. Global hat

C. Black hat

D. VLAN exploits

E. RTU exploits

正解：A,C,E 解答を投票する

出題：7

An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site.
Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources. As the OT network administrator, what is the best scenario to provide external access to the third- party company while continuing to secure the ICS networks?

A. Split the edge FortiGate device into multiple logical devices to allocate an independent VDOM for the third-party company.

B. Configure outbound security policies with limited active authentication users of the third-party company.

C. Implement an additional firewall using an additional upstream link to the internet.

D. Create VPN tunnels between downstream FortiGate devices and the edge FortiGate to protect ICS network traffic.

正解：A 解答を投票する

NSE7_OTS-7.2試験無料問題集「Fortinet NSE 7 - OT Security 7.2 認定」