Associate VMware Security
- Description
- Curriculum
- Reviews
The VMware Certified Technical Associate – Security 2024 (VCTA-SEC 2024) certification validates an individual’s foundational knowledge and skills in endpoint security and with VMware Carbon Black Cloud. This certification is intended for entry-level professionals who are interested in working with security technologies. Job-roles associated with this certification include entry-level security administrators and technicians.
Exam Details (Last Updated: 8/15/2022)
The VMware Security Technical Associate exam (1V0-91.22) which leads to VMware Certified Technical Associate – Security 2024 (VCTA-SEC 2024) certification is a 50-item exam, with a passing score of 300 using a scaled method. Candidates are given an appointment time of 120 minutes, which includes adequate time to complete the exam for non-native English speakers. This exam may contain a variety of item types including multiple-choice, multiple-selection multiple-choice, matching, drag-and-drop, and hot area. Additional item types may be used but will appear less frequently than those previously mentioned.
Exam Delivery
This is a proctored exam delivered through Pearson VUE. For more information, visit the Pearson VUE website.
Certification Information
For details and a complete list of requirements and recommendations for attainment, please reference the VMware Learning Services – Certification website.
Minimally Qualified Candidate
The candidate can describe and explain endpoint security concepts and can explain VMware Carbon Black Cloud components, features, and capabilities, but occasionally needs to research topics. The candidate can clearly perform navigation of the VMware Carbon Black Cloud user interface and make configuration changes, but occasionally needs to research topics. The candidate occasionally requires assistance or supervision with security related tasks. The candidate occasionally needs to research security related topics. The candidate possesses most, but perhaps not all the knowledge shown in the exam sections (blueprint).
-
1
Define the term cybersecurity -
2
Identify types of cybersecurity vulnerabilities
-
3
Recognize attack mitigation strategies
-
4
Describe the stages of an attack from the point of view of the attacker
-
5
Identify different types of cybersecurity attacks
-
6
Identify examples of behaviors associated with security tactics, techniques, and procedures
-
7
Identify examples of indicators of compromise
-
8
Identify the pillars of a zero-trust approach to security
-
9
Describe a defense-in-depth security approach
-
10
Identify the functions of basic security controls
-
11
Distinguish between antivirus and next-generation antivirus solutions
-
12
Explain the purpose of a watchlist
-
13
Recognize the central concepts in the intrinsic approach to security developed by VMware
-
14
Identify the control points in the VMware approach to security
-
15
Recognize VMware products that support the implementation of a zero-trust approach to security
-
16
Identify features of VMware Carbon Black Cloud solutions
-
17
Identify the priority of different reputations in VMware Carbon Black Cloud
-
18
Recognize when and how to assign reputations in VMware Carbon Black Cloud
-
19
Identify use cases for Carbon Black Cloud Endpoint Standard
-
20
Identify use cases for Carbon Black Cloud Audit and Remediation
-
21
Identify use cases for Carbon Black Cloud Enterprise EDR
-
22
Identify tasks that can be performed in the VMware Carbon Black Cloud console
-
23
Describe the term unknown file in the context of VMware Carbon Black Cloud
-
24
Describe how cloud analysis helps prevent malware
-
25
Describe how to remove malware from endpoints
-
26
Describe when and how to use the Inbox in the VMware Carbon Black Cloud console
-
27
Describe when and how to use audit logs in the VMware Carbon Black Cloud console
-
28
Determine the appropriate VMware Carbon Black Cloud sensor installation method for given use cases
-
29
Recognize the steps for performing an attended installation of a VMware Carbon Black Cloud sensor
-
30
Recognize the steps for performing an unattended installation of a VMware Carbon Black Cloud sensor
-
31
Identify types of data collected in VMware Carbon Black Cloud
-
32
Recognize the search capabilities in VMware Carbon Black Cloud
-
33
Describe the use cases for watchlists in VMware Carbon Black Cloud
-
34
Recognize different alert types
-
35
Identify ways to respond to and dismiss alerts in VMware Carbon Black Cloud
-
36
Describe the purpose of using recommended queries in VMware Carbon Black Cloud
-
37
Identify categories of recommended queries
-
38
Describe when and how to use Live Response
-
39
Recognize the purpose of built-in policies
-
40
Recognize how to modify settings on the Policy page in VMware Carbon Black Cloud
-
41
Describe the benefits to integrating security solutions
-
42
Identify the integration capabilities of VMware Carbon Black Cloud
