Qualys Patch Management Exam Questions and Answers 2023/2024, Exams of Computer Science

A series of questions and verified answers related to qualys patch management (pm). It covers key aspects of identifying patchable applications, creating patch jobs, understanding vmdr prioritization reports, and using qualys cloud agent for patch deployment. The questions address topics such as zero-touch patching, uninstalling patches, and configuring patch assessment profiles. This resource is useful for individuals preparing for qualys pm exams or seeking to deepen their understanding of patch management processes and tools. It offers practical insights into managing vulnerabilities and ensuring system security through effective patch management strategies. The content is structured to facilitate quick learning and knowledge retention, making it an ideal study aid for cybersecurity professionals.

Typology: Exams

2024/2025

Available from 05/24/2025

Prof.-Robert-Atkins
Prof.-Robert-Atkins šŸ‡ŗšŸ‡ø

5

(2)

14K documents

1 / 22

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Qualys Patch Management (PM) Exam (Latest 2023/ 2024) | Questions and Verified Answers| A GradeQUESTIONWhich of these would you use to identify patchable applications that introduce the most number of vulnerabilities in your subscription?(A) patch catalog(B) patch report(C) prioritized products reportAnswer:(C) prioritized products reportQUESTIONWhich of the following Qualys applications or services provide the ability to create a patch job? (Select three)(A)EDR(B)PM(C)VMDR(D)VmAnswer:(B)PM(C)VMDR(D)VmQUESTIONVMDR Prioritization Report helps you to:(A) Download patches from Vendor Global CDNs(B) Create tickets for high-risk vulnerabilities(C) Identify patches required to fix high-risk vulnerabilities(D) Identify vulnerabilities that pose the maximum risk to your business
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16

Partial preview of the text

Download Qualys Patch Management Exam Questions and Answers 2023/2024 and more Exams Computer Science in PDF only on Docsity!

Qualys Patch Management (PM) Exam

(Latest 2023/ 2024) | Questions and Verified

Answers| A Grade

QUESTION

Which of these would you use to identify patchable applications that introduce the most number of vulnerabilities in your subscription? (A) patch catalog (B) patch report (C) prioritized products report Answer: (C) prioritized products report

QUESTION

Which of the following Qualys applications or services provide the ability to create a patch job? (Select three) (A) EDR (B) PM (C) VMDR (D) Vm Answer: (B) PM (C) VMDR (D) Vm

QUESTION

VMDR Prioritization Report helps you to: (A) Download patches from Vendor Global CDNs (B) Create tickets for high-risk vulnerabilities (C) Identify patches required to fix high-risk vulnerabilities (D) Identify vulnerabilities that pose the maximum risk to your business

(E) Run scans to identify high-risk vulnerabilities Answer: (C) Identify patches required to fix high-risk vulnerabilities (D) Identify vulnerabilities that pose the maximum risk to your business

QUESTION

Which query would you use to identify vulnerabilities that can be patched by Qualys Patch Management? (A)vulnerabilities.vulnerability.qualysPatchable:TRUE (B)Patchable.vulnerabilities.qualys:FALSE (C)vulnerabilities.vulnerability.qualysPatchable:FALSE (D)Patchable.vulnerabilities.qualys:TRUE Answer: (A)vulnerabilities.vulnerability.qualysPatchable:TRUE

QUESTION

Which of these is true? (A) all vulnerabilities have a patch (B) not all vulnerabilities have a patch Answer: (B) not all vulnerabilities have a patch

QUESTION

VMDR Prioritization report automatically prioritizes the high-risk vulnerabilities for the most critical assets. (A) Correct (B) Incorrect Answer:

QUESTION

Which of the following statements about uninstalling patches is true? (A) Not all patches in the Patch Catalog can be uninstalled. (B) Uninstallable patches are shown with a key-shaped symbol (C) All patches in the Patch Catalog can be uninstalled. Answer: (A) Not all patches in the Patch Catalog can be uninstalled.

QUESTION

Using the "Search" field (found in the VULNERABILITIES section of the VM Dashboard), which query will produce a list of "patchable" vulnerabilities? (A)vulnerabilities.vulnerability.qualysPatchable:TRUE (B)vulnerabilities.vulnerability.qualysPatchable:FALSE (C)vulnerabilities.vulnerability.isPatchable:FALSE (D)vulnerabilities.vulnerability.isPatchable:TRUE Answer: (D)vulnerabilities.vulnerability.isPatchable:TRUE

QUESTION

Which of the following conventions can be used to include or assign host assets to a job? (choose

  1. (Select all that apply) (A) Asset Name (B) Asset Group (C) Business Unit (D) Asset Tag Answer: (A) Asset Name (D) Asset Tag

QUESTION

The process is responsible for installing and uninstalling patches, included in patch jobs you create. (A) stdeploy.exe (B) Qualys Cloud Agent (C) notify.exe (D) Qualys Cloud Agent UI Answer: (B) Qualys Cloud Agent

QUESTION

What does it mean, when a patch is displayed with a "key-shaped" symbol? (A) The patch is a key requirement for the deployment of other patches. (B) The patch cannot be downloaded by Qualys Cloud Agent. (C) The patch has been deprecated. (D) The patch cannot be uninstalled. Answer: (B) The patch cannot be downloaded by Qualys Cloud Agent.

QUESTION

Within a PM Assessment Profile, what is the minimum value, for patch assessment frequency? (A) 24 hours (B) 4 hours (C) 12 hours (D) 1 hour Answer: (A) 24 hours

(D) view Progress

QUESTION

Which of the following are options for prioritizing vulnerabilities, in a VMDR Prioritization Report? (choose 3) (Choose all that apply) (A) Compliance Posture (B) Attack Surface (C) Vulnerability Age (D) Real-Time Threat Indicator (RTI) Answer: (B) Attack Surface (C) Vulnerability Age (D) Real-Time Threat Indicator (RTI)

QUESTION

Which of the following are methods for activating the PM module on a Qualys agent host? (choose 3) (Choose all that apply) (A) Select the "Activate for FIM or IOC or PM" option for a host, in the Cloud Agent application. (B) Deploy the agent with an Activation Key that has the PM module selected. (C) Use the Qualys Cloud Agent API, to activate the PM module for a single agent or agents in bulk. (D) Add agent host assets to a PM Asset Group. Answer: (B) Deploy the agent with an Activation Key that has the PM module selected. (C) Use the Qualys Cloud Agent API, to activate the PM module for a single agent or agents in bulk. (D) Add agent host assets to a PM Asset Group.

QUESTION

Patching messages and notifications are managed by the process. (A) Qualys Cloud Agent

(B) Qualys Cloud Agent UI (C) stdeploy.exe (D) notify.exe Answer: (B) Qualys Cloud Agent UI

QUESTION

Application and OS patching are available for hosts running the Qualys . (A) Passive Sensor (B) Cloud Agent (C) Scanner Appliance (D) Virtual Scanner Answer: (B) Cloud Agent

QUESTION

Which of the following PM setup steps must be completed, before host patch assessments can begin? (choose 3) (Choose all that apply) (A) Assign host to a PM Job (B) Activate PM module on host (C) Assign host to an enabled PM Assessment Profile (D) Assign host to CA Configuration Profile (with PM enabled) Answer: (B) Activate PM module on host (C) Assign host to an enabled PM Assessment Profile (D) Assign host to CA Configuration Profile (with PM enabled)

QUESTION

To consume a patching license, one or more host _ must be added to the "Licenses" tab (within the Patch Management application).

(A) Discover patches already installed (B) Install or deploy missing patches (C) Uninstall existing patches (D) Discover missing patches Answer: (A) Discover patches already installed (D) Discover missing patches

QUESTION

Patches can be added to: (choose 3)(Choose all that apply) (A) Recurring jobs that are disabled (B) On Demand jobs that are disabled (C) Recurring jobs that are enabled (D) On Demand jobs that are enabled Answer: (A) Recurring jobs that are disabled (B) On Demand jobs that are disabled (C) Recurring jobs that are enabled

QUESTION

From the PATCHES section in the Patch Management application, which query produces a list of "uninstallable" patches? (A) uninstall:true (B) isRollback:true (C) uninstall:false (D) isRollback:false Answer: (B) isRollback:true

QUESTION

Which query token can be used to display patches that cannot be downloaded by Qualys' Cloud Agent? (A) agentDownload (B) isDownload (C) qualysDownload (D) downloadMethod Answer: (D) downloadMethod

QUESTION

When creating a new Deployment Job (in the Patch Management application), which query will produce a list of patches that have not been superseded? (A) notSuperseded:false (B) isSuperseded:false (C) notSuperseded:true (D) isSuperseded:true Answer: (B) isSuperseded:false

QUESTION

When creating a patch job, a "Patch Window" set to the option, will allow the Cloud Agent as much time as it needs to complete the job. (A) Complete (B) Unlimited (C) None (D) Full Answer: (B) Unlimited

QUESTION

What is the default "Cache size" allocated for Patch Management? (A) 2048 MB (B) 1024 MB (C) 512 MB (D) 256 MB Answer: (A) 2048 MB

QUESTION

PM Work Flow Answer: Step 1: Install Cloud Agent on the target host Step 2: Assign target agent host to a CA Configuration Profile that has PM enabled Step 3: Assign PM license to the host Step 4: Configure patch deployment job

QUESTION

Which of these is true? (A) a patch deployment job can be configured to suppress asset reboot (B) a patch deployment job cannot suppress asset reboot Answer: (A) a patch deployment job can be configured to suppress asset reboot

QUESTION

Which of these is true about patch deployment jobs? (A) by default, all users can edit a patch deployment job (B) by default, only the user who created the patch deployment job can edit it Answer:

(B) by default, only the user who created the patch deployment job can edit it

QUESTION

You want to create a deployment job that includes patches based on criteria. For example - security patches with critical severity. Which patch selection option would you use?. (A) manual patch selection (B) automatic patch selection Answer: (B) automatic patch selection

QUESTION

Which of these is true? (A) patch deployment jobs cannot be scheduled; they must run on-demand (B) patch deployment jobs can be scheduled for a future date Answer: (B) patch deployment jobs can be scheduled for a future date

QUESTION

Which of these is true about patch deployment jobs? (A) only some patch jobs can be cloned (B) all patch jobs can be cloned Answer: (B) all patch jobs can be cloned

QUESTION

Which of these can you use to include hosts in a patch deployment job?(Select 2)

(D) Before the job begins to run Answer: (C) Before the job is enabled

QUESTION

Additional assets can be added to a(n) _ job, both before and after it has been enabled. (A) On-Demand (B) Uninstall (C) Recurring (D) Run-Once Answer: (C) Recurring

QUESTION

Which of the following statements about Qualys Patch Management's "patch sources" is false? (A) Patches are originally acquired from Vendor Global CDNs. (B) Digital signatures and hash values are used to validate downloaded patches. (C) A VPN connection to your corporate network is required to download patches. (D) Both operating system and application patches are provided. Answer: (C) A VPN connection to your corporate network is required to download patches.

QUESTION

Which Qualys technology provides a patch download cache, to achieve a more efficient distribution of downloaded patches, to local agent host assets? (A) Qualys Gateway Server (B) Qualys Passive Sensor (C) Qualys Scanner Appliance (D) Qualys Connector

Answer: (A) Qualys Gateway Server

QUESTION

Which of the following frequencies, can be used to schedule a Deployment Job? (choose 3) (Choose all that apply) (A) Daily (B) Annually (C) Weekly (D) Monthly Answer: (A) Daily (C) Weekly (D) Monthly

QUESTION

What is the minimum "Cache size" setting, recommended for Windows Updates? (A) 512 MB (B) 2048 MB (C) 256 MB (D) 1024 MB Answer: (B) 2048 MB

QUESTION

Qualys Patch Management, provides tools and services needed to complete the "Response" phase of the Qualys Lifecycle. (A) WAS (B) PM (C) VM (D) VMDR

Answer:

QUESTION

Which of these is a reason for using a Patch Management solution? (A) To monitor logs on the asset (B) To scan for viruses (C) To close open ports and services (D) To address vulnerabilities Answer: (D) To address vulnerabilities

QUESTION

Which of these Qualys solutions would you use to address vulnerabilities on your assets? (A) Vulnerability Management (B) Patch Management (C) Endpoint Detection and Response (D) Policy Compliance Answer: (B) Patch Management

QUESTION

Which of these sensors does Qualys use to deploy patches? (A) Scanner appliances (B) Cloud connectors (C) Passive sensor (D) Cloud agent Answer:

(D) Cloud agent

QUESTION

Which of these actions is commonly performed after deploying patches? (A) Asset is decommissioned (B) Asset is scanned (C) Asset is rebooted (D) Asset is reimaged Answer: (C) Asset is rebooted

QUESTION

Which of these is a recommended approach to patching assets? (A) Uninstall old patches and apply new (B) Do not apply patches unless necessary (C) Apply patches on a set of test assets, verify that the patches do not cause issues, and patch the remaining assets (D) Apply patches on all assets right away Answer: (C) Apply patches on a set of test assets, verify that the patches do not cause issues, and patch the remaining assets

QUESTION

Qualys Patch Management correlates missing patches with vulnerabilities. (A) False (B) True Answer: (B) True