Netskope Certified Cloud Security Expert (NCCSE) — Question 30

You want to see all instances of malware that were detected by the Netskope Cloud Sandbox.

Which process would you use to achieve this task in the Netskope tenant UI?

Answer options

• A. Go to Incidents > Malicious Sites, and perform the detection_engine eq ‘Advanced Detection’ query.
• B. Go to Incidents > Malware and perform the detection_engine eq ‘Netskope Cloud Sandbox’ query.
• C. Go to Skope IT > Alerts, switch to Query Mode and perform the detection_engine eq ‘Netskope Cloud Sandbox’ query.
• D. Go to Skope IT > Page Events, switch to Query Mode and perform the detection_engine eq ‘Netskope Cloud Sandbox’ query.

Correct answer: B

Explanation

The correct answer is B because it specifically directs you to the right section in the Netskope UI to view malware instances detected by the Netskope Cloud Sandbox. Options A, C, and D lead to different sections or use incorrect queries that do not focus on malware detection from the specific sandbox.