Oracle 1Z0-1104-22 Certification Exam Questions and Answers PDF

How to Prepare for 1Z0-1104-22 Exam on Oracle Cloud Infrastructure 2022 Security Professional Certification?

The Oracle Cloud Infrastructure 2022 Security Professional (1Z0-1104-22) preparation guide helps you get focused on the exam. This guide also helps you stay on the 1Z01104-22 exam track to get certified with a good score in the final exam.

1Z0-1104-22 Oracle Cloud Infrastructure 2022 Security Professional Exam Summary

Exam Name Oracle Cloud Infrastructure 2022 Security Professional

Exam Code 1Z0-1104-22

Exam Product Version Oracle Cloud Infrastructure

1Z0-1104-22: Oracle Cloud Infrastructure 2022 Security Professional

Exam Price USD $245 (Pricing may vary by country or by localized currency)

Duration 90 minutes

Number of Questions 55

Passing Score 65%

Format Multiple Choice Questions (MCQ)

Recommended

Sample Questions

Recommended

Exam Syllabus: 1Z0-1104-22 Oracle Cloud Infrastructure 2022

Security Professional

Cloud Security Business Drivers and Challenges

- Identify the Cloud Security use cases, challenges, and trends (e.g. IDaaS, SIEM, etc)

1Z0-1104-22: Oracle Cloud Infrastructure 2022 Security Professional

Manage Identity and Access

- Design a scalable authorization model with users, groups, and policies

- Implement conditional and advanced policies

- Use Compartments to isolate resources

- Configure Dynamic Groups, Network Sources, and TagBased Access Control

- Understand MFA, Identity Federation, and SSO

- Secure connectivity of virtual networks (DRG v2, Peering)

- Secure connectivity of hybrid networks (Site-to-Site VPN, FastConnect)

Implement Infrastructure Security

- Configure Network Security Groups (NSGs) and Security Lists

- Describe the use case for VCN Flow Logs

- Implement OCI Bastion

- Configure Vulnerability Scanning

- Configure security for OKE and Oracle Functions

- Configure and manage Keys in OCI Vault

- Configure and manage Secrets in OCI Vault

- Describe key capabilities provided by Data Safe

Secure your Apps and Data

- Configure security for Oracle Autonomous Database and DB Systems

- Configure security for OCI storage services

- Create and configure Web Application Firewall

- Discuss typical use cases for Cloud Guard

Improve Cloud Security Posture

- Execute configurations on Cloud Guard

- Understand and implement Security Zones and Security Advisor

- Implement security monitoring and alerting

Manage Security Operations

- Design and implement a logging and logging analytics solution

- Describe the use case for auditing and review OCI Audit Logs

- Describe OCI Shared Security Responsibility Model

Design for Security and Compliance

- Describe the use case for Penetration and Vulnerability Testing

Oracle 1Z0-1104-22 Certification Sample Questions and Answers

To make you familiar with the structure of the Oracle Cloud Infrastructure 2022 Security Professional (1Z0-1104-22) certification exam, we have prepared this sample question set. We suggest you try our Sample Questions for Oracle 1Z0-1104-22 Certification to test your understanding of Oracle 1Z0-1104-22 process in the real Oracle certification exam environment.

1Z0-1104-22 Oracle Cloud Infrastructure 2022 Security Professional Sample Questions

01. Which of the following is necessary step when creating a secret in vault?

a) Digest Hash shouldbe created of the secret value

b) Vault-managed key is necessary to encrypt the secret

c) Object Storage must be created to run secret service

d) Shamir's secret sharing algorithm should be used to unseal the vault

02. Which components are a part of the OCI Identity and Access Management service?

a) Policies

b) VCN

c) Compute instances

d) Regional subnets

03. Where does the Kubernetes cluster control plane stores sensitive configuration data (such as authentication tokens, certificates, and credentials) as Kubernetes secret objects?

a) NVMe

b) Files System Service

c) Autonomous Data Warehouse

d) Oracle Object Storage Bucket

e) ETCD

04. You are scheduled to run a system maintenance on OCI environment for two hours and would require pausing alarm notifications from Monitoring Service during this period.

Which of the following configuration is used to achieve this requirement?

a) Resolution

b) Dimension

c) Suspension

d) Suppression

05. Select the component that encompasses the overall configuration of your WAF service on OCI.

a) Protection rules

b) Origin

c) Web Application Firewall policy

d) Bot Management

06. As a lead Security Architect, you have tasked to restrict access to and from the worker nodes in pods running in Oracle Container Engine for Kubernetes?

a) Security Lists

b) Cloud Guard

c) Vulnerability Scanning

d) Identity and Access Management

07. In which two ways can you improve data durability in Oracle Cloud Infrastructure Object Storage?

a) Setup volumes in a RAID1 configuration

b) Enable server-side encryption

c) Enable Versioning

d) Limit delete permissions

e) Enable client-side encryption

08. Which tasks can you perform on a dedicated virtual machine host?

a) Instance configurations

b) Manual scaling

c) Creating instance pools

d) Capacity reservations

09. You want a software that can automatically collect and aggregate log data generated throughout your organization's infrastructure, analyze it, and send alerts if it detects a deviation from the norm. Which software must you use?

a) Security Integration Management (SIM)

b) Security Information Management (SIM)

c) Security Event Management (SEM)

d) Security Information and Event Management (SIEM)

10. What information do you get by using the Network Visualizer tool?

a) Routes defined between subnets and gateways

b) Organization of subnets and VLANs across availability domains

c) Interconnectivity of VCNs

d) State of subnets in a VCN

How to Register for 1Z0-1104-22 Oracle Cloud Infrastructure 2022 Security

● Purchase exam voucher from Oracle University

● Register for an exam at PearsonVue