Exam: 1Z0-1104-23

Format: Hands-on Performance Based
Duration: 90 Minutes
Exam Price: $
Number of Questions: Not Applicable
Passing Score: 60%
Validation: This exam has been validated against Oracle Cloud Infrastructure 2023
Policy: Cloud Recertification
Earn associated certifications
Passing this exam is required to earn these certifications. Select each certification title below to view full requirements.
Oracle Cloud Infrastructure 2023 Certified Security Professional

Prepare to pass exam: 1Z0-1104-23
The Oracle Cloud Infrastructure 2023 Security Professional certification is a Hands-on Performance Exam (HPE) that combines hands-on challenges and multiple-choice questions.

The Oracle Cloud ​Infrastructure Security ​certification is intended for ​professionals who are ​responsible for security in ​their Oracle Cloud ​Infrastructure environments. ​The target candidate should ​have 2+ years of experience ​in designing and implementing ​security solutions. ​Additionally, the ​candidate should have 6 ​months or more of hands-on ​experience in securing ​workloads on OCI. The exam ​validates the following OCI ​Security topics:​
• Working knowledge of OCI security services to provide a secure cloud environment
• Understanding of OCI Identity and Access Management service and features
• Understanding of OCI mechanisms to secure data and database workloads
• Understanding of network security in OCI
• Understanding of how to secure applications in OCI
• Understanding of security operations, including monitoring, logging, and alerting
• Familiarity with compliance frameworks

Up-to-date OCI training and hands-on experience are recommended. This certification is available to all candidates.

Take recommended training
Complete one of the courses below to prepare for your exam (optional):

Become a Cloud Security Professional (2023)

Practice Exam
Additional Preparation and Information

A combination of Oracle training and hands-on experience (attained via labs and/or field experience), in the learning subscription, provides the best preparation for passing the exam.

Review exam topics
The following weightings are an approximate distribution of objectives covered in this exam.
Objectives % of Exam
OCI Security Introduction 5
Manage Identity and Access 15
Implement Network, Platform and Infrastructure Security 20
Secure your Applications and Data 25
Improve Cloud Security Posture 25
Manage Security Operations 10

OCI Security Introduction
Describe OCI Shared Security Responsibility Model
Discuss core security services offered by OCI

Manage Identity and Access
Design a scalable authorization model with users, groups, and policies
Implement conditional and advanced policies
Use Compartments to isolate resources
Configure Dynamic Groups, Network Sources, and Tag-Based Access Control
Understand MFA, Identity Federation, and SSO

Implement Network, Platform, and Infrastructure Security
Secure connectivity of hybrid networks using Site-to-Site VPN and FastConnect
Implement Network Security Groups (NSGs), Security Lists, and Network Firewalls to enhance VCN security
Implement OCI Bastion
Implement Vulnerability scanning to ensure the security and compliance of Host and Container images
Utilize OS Management to manage and monitor updates.
Configure and secure load balancers to ensure high availability

Secure your Applications and Data
Create and manage Keys in OCI Vault
Configure and manage Secrets in OCI Vault
Describe key capabilities provided by Data Safe
Configure security for Oracle Autonomous Database and DB Systems
Configure security for OCI storage services
Create and configure Web Application Firewall
Configure, deploy and maintain OCI Certificates.

Improve Cloud Security Posture
Utilize Cloud Guard to monitor and analyze the security posture of OCI resources and applications
Understand and implement Security Zones and Security Advisor
Use threat intelligence to identify rogue users.

Manage Security Operations
Implement security monitoring and alerting
Design and implement a logging and logging analytics solution
Describe the use case for auditing and review OCI Audit Logs

1Z0-1104-23 Brain Dumps Exam + Online / Offline and Android Testing Engine & 4500+ other exams included
$50 - $25 (you save $25)
Buy Now

QUESTION 1
When creating an OCI Vault, which factors may lead to select the Virtual Private Vault? Select TWO correct answers

A. Need for more than 9211 key versions
B. Greater degree of isolation
C. To mask Pll data for non-production environment
D. Ability to back up the vault

Answer: B,D

Explanation:
Graphical user interface, text, application Description automatically generated

QUESTION 2
Cloud Guard detected a risk score of zeroin the dashboard, what does this mean ?

A. Risk score doesn't say anything. These are just numbers
B. LOW or MINOR issues
C. Larger number of problems that have high risk levels ( HIGH or CRITICAL )
D. No problem detected for any resource

Answer: D

Explanation:
Graphical user interface, text, application Description automatically generated

QUESTION 3
With regard to vulnerability and cloud penetration testing, which rules of engagement apply? Select
TWO correct answers.

A. Any port scanning must be performed in an aggressive mode
B. Physical penetration and vulnerability testing of Oraclefacilities is prohibited
C. Testing should target any other subscription or any other Oracle Cloud customer resources
D. You are responsible for any damages to Oracle Cloud customers that are caused by your testing activities

Answer: B,D

Explanation:
Graphical user interface, text, application Description automatically generated

QUESTION 4
How can you establish private connectivity over two VCN within same OCI region without traversing the traffic over public internet ?

A. NAT Gateway
B. Data Guard
C. Remote VCN Peering
D. Local VCN Peering

Answer: D

Explanation:
Graphical user interface, text, application, email Description automatically generated

QUESTION 5
Which securityissues can be identified by Oracle Vulnerability Scanning Service? Select TWO correct answers

A. Distributed Denial of Service (DDoS)
B. Ports that are unintentionally left open can be a potential attack vector for cloud resources
C. SQL Injection
D. CISpublished Industry-standard benchmarks

Answer: B,D

Explanation:
Graphical user interface, text, application, email Description automatically generated

QUESTION 6
Which resources can be used to create and manage from Vault Service ? Select TWO correct answers

A. Secret
B. IAM
C. Keys
D. Cloud Guard

Answer: A,C

1Z0-1104-23 Brain Dumps Exam + Online / Offline and Android Testing Engine & 4500+ other exams included
$50 - $25 (you save $25)
Buy Complete

Certainly, here's a rewritten version of your text:

GILLARD HOWARD 1 month, South Carolina
hello, took exam today and passed , i got 80 questions and all were found here.
upvoted 1 times

Shujaat Feroze months ago - Australia
Passed today. 90% of the questions are included here. I got only from the last 98 questions
upvoted 2 times

Barlier Gatien 2 months, France
Passed the exam. 80% of the exam are on this reviewer
upvoted 1 times

chowdary Kvs 1 months, 3 United Arab Emirates
Just passed SVPN - Felt like 90% of these Oracle 1Z0-1104 questions were on the exam. I only had a few questions that weren't here. I spent a lot of time verifying answers to the questions here because many are incorrect. Just pay attention to the discussion posts from people but the questions/options are spot on. - February 2023

red_sparrow_Gr 7 months, 3 weeks ago
same here. only 1 was not from these dumps!
Reply: Thank you for your feed back

Daniel Nenciu-Crasi 2 week, Romania
These questions are still valid, thanks.

Harmon Tribbey 1 week,
These questions are stull valid.
Reply: Yes
upvoted 1 times

logged members Can Post comments / review and take part in Discussion

Enter Email

Enter Subject

Enter Comment

Certkingdom Offline Testing Engine Simulator Download

Prepare with yourself how CertKingdom Offline Exam Simulator it is designed specifically for any exam preparation. It allows you to create, edit, and take practice tests in an environment very similar to an actual exam.


Supported Platforms: Windows-7 64bit or later - EULA | How to Install?


FAQ's: Windows-8 / Windows 10 if you face any issue kinldy uninstall and reinstall the Simulator again.



Download Offline Simulator-Beta

Certkingdom Testing Engine Features

• Certkingdom Testing Engine simulates the real exam environment.
• Interactive Testing Engine Included
• Live Web App Testing Engine
• Offline Downloadable Desktop App Testing Engine
• Testing Engine App for Android
• Testing Engine App for iPhone
• Testing Engine App for iPad
• Working with the Certkingdom Testing Engine is just like taking the real tests, except we also give you the correct answers.
• More importantly, we also give you detailed explanations to ensure you fully understand how and why the answers are correct.

Certkingdom Android Testing Engine Simulator Download

Take your learning mobile android device with all the features as desktop offline testing engine. All android devices are supported.
Supported Platforms: All Android OS EULA

Install the Android Testing Engine from google play store and download the app.ck from certkingdom website android testing engine download

Certkingdom Android Testing Engine Features

• CertKingdom Offline Android Testing Engine
• Make sure to enable Root check in Playstore
• Live Realistic practice tests
• Live Virtual test environment
• Live Practice test environment
• Mark unanswered Q&A
• Free Updates
• Save your tests results
• Re-examine the unanswered Q & A
• Make your own test scenario (settings)
• Just like the real tests: multiple choice questions
• Updated regularly, always current