Prepare to pass exam: 1Z0-1104-23
Format: Hands-on Performance Based
Duration: 90 Minutes
Exam Price: Not specified
Number of Questions: Not Applicable
Passing Score: 60%
Validation: This exam has been validated against Oracle Cloud Infrastructure 2023
Policy: Cloud Recertification
Earn associated certifications: Passing this exam is required to earn the following certification:
Certification Title: Oracle Cloud Infrastructure 2023 Certified Security Professional
The Oracle Cloud Infrastructure 2023 Security Professional certification is a Hands-on Performance Exam (HPE) that combines hands-on challenges and multiple-choice questions.
The Oracle Cloud Infrastructure Security certification is intended for professionals who are responsible for security in their Oracle Cloud Infrastructure environments. The target candidate should have 2+ years of experience in designing and implementing security solutions. Additionally, the candidate should have 6 months or more of hands-on experience in securing workloads on OCI. The exam validates the following OCI Security topics:
• Working knowledge of OCI security services to provide a secure cloud environment
• Understanding of OCI Identity and Access Management service and features
• Understanding of OCI mechanisms to secure data and database workloads
• Understanding of network security in OCI
• Understanding of how to secure applications in OCI
• Understanding of security operations, including monitoring, logging, and alerting
• Familiarity with compliance frameworks
Up-to-date OCI training and hands-on experience are recommended. This certification is available to all candidates.
Take recommended training
Complete one of the courses below to prepare for your exam (optional):
Become a Cloud Security Professional (2023)
Practice Exam
Additional Preparation and Information
A combination of Oracle training and hands-on experience (attained via labs and/or field experience), in the learning subscription, provides the best preparation for passing the exam.
Review exam topics
The following weightings are an approximate distribution of objectives covered in this exam.
Objectives % of Exam
OCI Security Introduction 5
Manage Identity and Access 15
Implement Network, Platform and Infrastructure Security 20
Secure your Applications and Data 25
Improve Cloud Security Posture 25
Manage Security Operations 10
OCI Security Introduction
Describe OCI Shared Security Responsibility Model
Discuss core security services offered by OCI
Manage Identity and Access
Design a scalable authorization model with users, groups, and policies
Implement conditional and advanced policies
Use Compartments to isolate resources
Configure Dynamic Groups, Network Sources, and Tag-Based Access Control
Understand MFA, Identity Federation, and SSO
Implement Network, Platform, and Infrastructure Security
Secure connectivity of hybrid networks using Site-to-Site VPN and FastConnect
Implement Network Security Groups (NSGs), Security Lists, and Network Firewalls to enhance VCN security
Implement OCI Bastion
Implement Vulnerability scanning to ensure the security and compliance of Host and Container images
Utilize OS Management to manage and monitor updates.
Configure and secure load balancers to ensure high availability
Secure your Applications and Data
Create and manage Keys in OCI Vault
Configure and manage Secrets in OCI Vault
Describe key capabilities provided by Data Safe
Configure security for Oracle Autonomous Database and DB Systems
Configure security for OCI storage services
Create and configure Web Application Firewall
Configure, deploy and maintain OCI Certificates.
Improve Cloud Security Posture
Utilize Cloud Guard to monitor and analyze the security posture of OCI resources and applications
Understand and implement Security Zones and Security Advisor
Use threat intelligence to identify rogue users.
Manage Security Operations
Implement security monitoring and alerting
Design and implement a logging and logging analytics solution
Describe the use case for auditing and review OCI Audit Logs
Examkingdom Oracle 1Z0-1104-23 Exam pdf,
Best Oracle 1Z0-1104-23 downloads, Oracle 1Z0-1104-23 Dumps at Certkingdom.com
Sample Questions
QUESTION 1
When creating an OCI Vault, which factors may lead to select the Virtual Private Vault? Select TWO correct answers
A. Need for more than 9211 key versions
B. Greater degree of isolation
C. To mask Pll data for non-production environment
D. Ability to back up the vault
Answer: B,D
Explanation:
Graphical user interface, text, application Description automatically generated
QUESTION 2
Cloud Guard detected a risk score of zeroin the dashboard, what does this mean ?
A. Risk score doesn’t say anything. These are just numbers
B. LOW or MINOR issues
C. Larger number of problems that have high risk levels ( HIGH or CRITICAL )
D. No problem detected for any resource
Answer: D
Explanation:
Graphical user interface, text, application Description automatically generated
QUESTION 3
With regard to vulnerability and cloud penetration testing, which rules of engagement apply? Select
TWO correct answers.
A. Any port scanning must be performed in an aggressive mode
B. Physical penetration and vulnerability testing of Oraclefacilities is prohibited
C. Testing should target any other subscription or any other Oracle Cloud customer resources
D. You are responsible for any damages to Oracle Cloud customers that are caused by your testing activities
Answer: B,D
Explanation:
Graphical user interface, text, application Description automatically generated
QUESTION 4
How can you establish private connectivity over two VCN within same OCI region without traversing the traffic over public internet ?
A. NAT Gateway
B. Data Guard
C. Remote VCN Peering
D. Local VCN Peering
Answer: D
Explanation:
Graphical user interface, text, application, email Description automatically generated
QUESTION 5
Which securityissues can be identified by Oracle Vulnerability Scanning Service? Select TWO correct answers
A. Distributed Denial of Service (DDoS)
B. Ports that are unintentionally left open can be a potential attack vector for cloud resources
C. SQL Injection
D. CISpublished Industry-standard benchmarks
Answer: B,D
Explanation:
Graphical user interface, text, application, email Description automatically generated
QUESTION 6
Which resources can be used to create and manage from Vault Service ? Select TWO correct answers
A. Secret
B. IAM
C. Keys
D. Cloud Guard
Answer: A,C
Customer Reviews
GILLARD HOWARD 1 month, South Carolina
hello, took exam today and passed , i got 80 questions and all were found here.
upvoted 1 times
Shujaat Feroze months ago – Australia
Passed today. 90% of the questions are included here. I got only from the last 98 questions
upvoted 2 times
Barlier Gatien 2 months, France
Passed the exam. 80% of the exam are on this reviewer
upvoted 1 times
chowdary Kvs 1 months, 3 United Arab Emirates
Just passed SVPN – Felt like 90% of these Oracle 1Z0-1104 questions were on the exam. I only had a few questions that weren’t here. I spent a lot of time verifying answers to the questions here because many are incorrect. Just pay attention to the discussion posts from people but the questions/options are spot on. – February 2023
red_sparrow_Gr 7 months, 3 weeks ago
same here. only 1 was not from these dumps!
Reply: Thank you for your feed back
Daniel Nenciu-Crasi 2 week, Romania
These questions are still valid, thanks.
Harmon Tribbey 1 week,
These questions are stull valid.
Reply: Yes
upvoted 1 times
No Comment