최신 350-201 무료덤프 - Cisco Performing CyberOps Using Cisco Security Technologies

문제1

What is the impact of hardening machine images for deployment?

A. reduces the steps needed to mitigate threats

B. increases the availability of threat alerts

C. increases the speed of patch deployment

D. reduces the attack surface

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제2

Refer to the exhibit.

Based on the detected vulnerabilities, what is the next recommended mitigation step?

A. Evaluate service disruption and associated risk before prioritizing patches.

B. Temporarily shut down unnecessary services until patch deployment ends.

C. Perform root cause analysis for all detected vulnerabilities.

D. Remediate all vulnerabilities with descending CVSS score order.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제3

A security architect in an automotive factory is working on the Cyber Security Management System and is implementing procedures and creating policies to prevent attacks. Which standard must the architect apply?

A. IEC62439-2

B. IEC62443

C. IEC62446

D. IEC62439-3

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Drag and drop the function on the left onto the mechanism on the right.

정답:

문제5

How is a SIEM tool used?

A. To search and compare security data against acceptance standards and generate reports for analysis

B. To compare security alerts against configured scenarios and trigger system responses

C. To collect and analyze security data from network devices and servers and produce alerts

D. To collect security data from authentication failures and cyber attacks and forward it for analysis

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제6

The physical security department received a report that an unauthorized person followed an authorized individual to enter a secured premise. The incident was documented and given to a security specialist to analyze. Which step should be taken at this stage?

A. Change access controls to high risk assets in the enterprise

B. Identify movement of the attacker in the enterprise

C. Identify assets the attacker handled or acquired

D. Determine the assets to which the attacker has access

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제7

A threat actor has crafted and sent a spear-phishing email with what appears to be a trustworthy link to the site of a conference that an employee recently attended. The employee clicked the link and was redirected to a malicious site through which the employee downloaded a PDF attachment infected with ransomware. The employee opened the attachment, which exploited vulnerabilities on the desktop. The ransomware is now installed and is calling back to its command and control server. Which security solution is needed at this stage to mitigate the attack?

A. endpoint security solution

B. web security solution

C. email security solution

D. network security solution

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제8

Refer to the exhibit.

Which indicator of compromise is represented by this STIX?

A. website redirecting traffic to ransomware server

B. website hosting malware to download files

C. web server vulnerability exploited by malware

D. cross-site scripting vulnerability to backdoor server

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제9

A threat actor used a phishing email to deliver a file with an embedded macro. The file was opened, and a remote code execution attack occurred in a company's infrastructure. Which steps should an engineer take at the recovery stage?

A. Review access lists and require users to increase password complexity

B. Identify the attack vector and update the IDS signature list

C. Analyze event logs and restrict network access

D. Determine the systems involved and deploy available patches

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제10

A company recently started accepting credit card payments in their local warehouses and is undergoing a PCI audit. Based on business requirements, the company needs to store sensitive authentication data for 45 days.
How must data be stored for compliance?

A. by entities that issue the payment cards or that perform support issuing services

B. post-authorization by non-issuing entities if there is a documented business justification

C. by issuers and issuer processors if there is a legitimate reason

D. post-authorization by non-issuing entities if the data is encrypted and securely stored

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

최신 350-201 무료덤프 - Cisco Performing CyberOps Using Cisco Security Technologies

우리와 연락하기

유용한 링크

최신 업데이트