최신 350-701 무료덤프 - Cisco Implementing and Operating Cisco Security Core Technologies

문제1

Drag and drop the capabilities of Cisco Firepower versus Cisco AMP from the left into the appropriate category on the right.

정답:

Explanation:
Application Description automatically generated with low confidence

ExplanationThe Firepower System uses network discovery and identity policies to collect host, application, and user data for traffic on your network. You can use certain types of discovery and identity data to build a comprehensive map of your network assets, perform forensic analysis, behavioral profiling, access control, and mitigate and respond to the vulnerabilities and exploits to which your organization is susceptible.The Cisco Advanced Malware Protection (AMP) solution enables you to detect and block malware, continuously analyze for malware, and get retrospective alerts. AMP for Networks delivers network-based advanced malware protection that goes beyond point-in-time detection to protect your organization across the entire attack continuum - before, during, and after an attack. Designed for Cisco Firepower network threat appliances, AMP for Networks detects, blocks, tracks, and contains malware threats across multiple threat vectors within a single system. It also provides the visibility and control necessary to protect your organization against highly sophisticated, targeted, zero-day, and persistent advanced malware threats.

문제2

Which Cisco platform provides an agentless solution to provide visibility across the network including encrypted traffic analytics to detect malware in encrypted traffic without the need for decryption?

A. Cisco Stealthwatch

B. Cisco Identity Services Engine

C. Cisco Advanced Malware Protection

D. Cisco AnyConnect

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제3

An engineer configures new features within the Cisco Umbrella dashboard and wants to identify and proxy traffic that is categorized as risky domains and may contain safe and malicious content. Which action accomplishes these objectives?

A. Create a new site within Cisco Umbrella to block requests from those categories so they can be sent to the proxy device.

B. Configure URL filtering within Cisco Umbrella to track the URLs and proxy the requests for those categories and below.

C. Upload the threat intelligence database to Cisco Umbrella for the most current information on reputations and to have the destination lists block them.

D. Configure intelligent proxy within Cisco Umbrella to intercept and proxy the requests for only those categories.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제4

What is a functional difference between Cisco AMP for Endpoints and Cisco Umbrella Roaming Client?

A. AMP for Endpoints authenticates users and provides segmentation, and the Umbrella Roaming Client allows only for VPN connectivity.

B. The Umbrella Roaming Client authenticates users and provides segmentation, and AMP for Endpoints allows only for VPN connectivity

C. The Umbrella Roaming client stops and tracks malicious activity on hosts, and AMP for Endpoints tracks only URL-based threats.

D. AMP for Endpoints stops and tracks malicious activity on hosts, and the Umbrella Roaming Client tracks only URL-based threats.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제5

Which security solution is used for posture assessment of the endpoints in a BYOD solution?

A. Cisco ASA

B. Cisco Umbrella

C. Cisco ISE

D. Cisco FTD

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제6

Drag and drop the exploits from the left onto the type of security vulnerability on the right.

정답:

Explanation:

문제7

Which threat intelligence standard contains malware hashes?

A. open command and control

B. trusted automated exchange of indicator information

C. advanced persistent threat

D. structured threat information expression

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제8

During a recent security audit a Cisco IOS router with a working IPSEC configuration using IKEv1 was flagged for using a wildcard mask with the crypto isakmp key command The VPN peer is a SOHO router with a dynamically assigned IP address Dynamic DNS has been configured on the SOHO router to map the dynamic IP address to the host name of vpn sohoroutercompany.com In addition to the command crypto isakmp key Cisc425007536 hostname vpn.sohoroutercompany.com what other two commands are now required on the Cisco IOS router for the VPN to continue to function after the wildcard command is removed?
(Choose two)

A. Add the dynamic keyword to the existing crypto map command

B. ip name-server <DNS Server IP Address>

C. ip host vpn.sohoroutercompany.eom <VPN Peer IP Address>

D. crypto isakmp identity hostname

E. fqdn vpn.sohoroutercompany.com <VPN Peer IP Address>

정답: B,D

설명: (DumpTOP 회원만 볼 수 있음)

문제9

What is a feature of container orchestration?

A. ability to deploy Kubernetes clusters in air-gapped sites

B. ability to deploy Amazon EKS clusters by using the Cisco Container Platform data plane

C. ability to deploy Amazon ECS clusters by using the Cisco Container Platform data plane

D. automated daily updates

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제10

An engineer needs to configure a Cisco Secure Email Gateway (SEG) to prompt users to enter multiple forms of identification before gaining access to the SEG. The SEG must also join a cluster using the preshared key of cisc421555367. What steps must be taken to support this?

A. Enable two-factor authentication through a RADIUS server, and then join the cluster via the SEG GUI.

B. Enable two-factor authentication through a TACACS+ server, and then join the cluster via the SEG GUI.

C. Enable two-factor authentication through a TACACS+ server, and then join the cluster via the SEG CLI.

D. Enable two-factor authentication through a RADIUS server, and then join the cluster via the SEG CLI

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제11

How does Cisco Workload Optimization portion of the network do EPP solutions solely performance issues?

A. It automates resource resizing

B. It sets up a workload forensic score

C. It deploys an AWS Lambda system

D. It optimizes a flow path

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제12

Which security solution uses NetFlow to provide visibility across the network, data center, branch offices, and cloud?

A. Cisco Stealthwatch

B. Cisco Encrypted Traffic Analytics

C. Cisco Umbrella

D. Cisco CTA

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제13

What is the primary difference between an Endpoint Protection Platform and an Endpoint Detection and Response?

A. EPP focuses on network security, and EDR focuses on device security.

B. EPP focuses on prevention, and EDR focuses on advanced threats that evade perimeter defenses.

C. EDR focuses on prevention, and EPP focuses on advanced threats that evade perimeter defenses.

D. EDR focuses on network security, and EPP focuses on device security.

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제14

A network engineer must create an access control list on a Cisco Adaptive Security Appliance firewall.
The access control list must permit HTTP traffic to the internet from the organization's inside network 192.168.1.0/24.
Which IOS command must oe used to create the access control list?

A.

B.

C.

D.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제15

An engineer configured a new network identity in Cisco Umbrella but must verify that traffic is being routed through the Cisco Umbrella network. Which action tests the routing?

A. Add the public IP address that the client computers are behind to a Core Identity.

B. Ensure that the client computers are pointing to the on-premises DNS servers.

C. Enable the Intelligent Proxy to validate that traffic is being routed correctly.

D. Browse to http://welcome.umbrella.com/ to validate that the new identity is working.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제16

A company recently discovered an attack propagating throughout their Windows network via a file named abc428565580xyz exe The malicious file was uploaded to a Simple Custom Detection list in the AMP for Endpoints Portal and the currently applied policy for the Windows clients was updated to reference the detection list Verification testing scans on known infected systems shows that AMP for Endpoints is not detecting the presence of this file as an indicator of compromise What must be performed to ensure detection of the malicious file?

A. Upload the malicious file to the Blocked Application Control List

B. Check the box in the policy configuration to send the file to Cisco Threat Grid for dynamic analysis

C. Upload the SHA-256 hash for the file to the Simple Custom Detection List

D. Use an Advanced Custom Detection List instead of a Simple Custom Detection List

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제17

Which feature within Cisco Umbrella allows for the ability to inspect secure HTTP traffic?

A. File Analysis

B. SSL Decryption

C. Destination Lists

D. SafeSearch

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제18

Which deployment model is the most secure when considering risks to cloud adoption?

A. Hybrid Cloud

B. Public Cloud

C. Community Cloud

D. Private Cloud

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제19

Which type of attack is MFA an effective deterrent for?

A. teardrop

B. syn flood

C. phishing

D. ping of death

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

최신 350-701 무료덤프 - Cisco Implementing and Operating Cisco Security Core Technologies

우리와 연락하기

유용한 링크

최신 업데이트