ExamTopics Logo
Mail Us[email protected]
Menu
Checkpoint Discussions
exam questions

Exam 156-536 All Questions

View all questions & answers for the 156-536 exam
Go to Exam

Exam 156-536 topic 1 question 25 discussion

Actual exam question from Checkpoint's 156-536
Question #: 25
Topic #: 1
[All 156-536 Questions]

The CEO of the company uses the latest Check Point Endpoint client on his laptop. All capabilities are enabled and FDE has been applied. The CEO is on a business trip and remembers that he needs to send some important emails, so he is forced to boot up his laptop in a public area. However, he suddenly needs to leave and forgets to lock or shut down his computer. The laptop remains unattended. Is the CEO’s data secured?

  • A. The data is not secured. The laptop was left unlocked in the email client window. Everyone who accesses the laptop, before it automatic locks, has access to all data.
  • B. The laptop is not secure because anyone in the local connected Wi-Fi can access the CEOs corporate data.
  • C. The laptop is totally secure since the Endpoint client will automatically detect the emergency and has set the OS in hibernate mode.
  • D. The laptop is using the latest technology for Full Disk encryption. Anyone who finds the laptop can’t access its data due to the data encryption used.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by samkyaw at Feb. 11, 2025, 12:53 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Nicknamefordiscussions_1
3 weeks, 1 day ago
Selected Answer: A
The way I read the question the correct answer should be A. It is a bit unclear but it seems that the CEO had fully unlocked the device and the operating system. If this is indeed true then FDE won't protect the data on this computer as it is accessed by the authenticated user account. Pre-Boot and Pre-Boot bypass do nothing for this case the way I read the question. Only if he did authenticate in pre-boot and not in windows the data would be safe. But this is not clearly discussed in the question. Pre-Boot Bypass is only for maintenance purposes so it is not a factor in this question. The only protection that could help here is DLP for example so the trusted data is not send using USB or the email client.
upvoted 1 times
...
samkyaw
4 months, 3 weeks ago
Selected Answer: D
The Pre-boot settings in the Full Disk EncryptionClosed policy determine how Temporary Pre-boot Bypass behaves when you enable it for a computer. Temporary Pre-boot Bypass reduces security. Therefore use it only when necessary and for the amount of time that is necessary. The settings in the Full Disk Encryption policy set when the Temporary Pre-boot Bypass turns off automatically and Pre-boot protection is enabled again.
upvoted 1 times
...
samkyaw
4 months, 3 weeks ago
Selected Answer: D
The settings in the Full Disk Encryption policy set when the Temporary Pre-boot Bypass turns off automatically and Pre-boot protection is enabled again
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel