26 October, 2021

A Review Of Tested 350-701 Study Guides

Validated of 350-701 exam question materials and free draindumps for Cisco certification for IT specialist, Real Success Guaranteed with Updated 350-701 pdf dumps vce Materials. 100% PASS Implementing and Operating Cisco Security Core Technologies exam Today!

Page: 1 / 28

Total 337 questions Full Exam Access

Question 1

Which policy is used to capture host information on the Cisco Firepower Next Generation Intrusion Prevention System?

correlation

intrusion

access control

network discovery

Question 2

What is a characteristic of Cisco ASA Netflow v9 Secure Event Logging?

It tracks flow-create, flow-teardown, and flow-denied events.

It provides stateless IP flow tracking that exports all records of a specific flow.

It tracks the flow continuously and provides updates every 10 seconds.

Its events match all traffic classes in parallel.

Question 3

Which feature within Cisco Umbrella allows for the ability to inspect secure HTTP traffic?

File Analysis

SafeSearch

SSL Decryption

Destination Lists

Question 4

How does Cisco Umbrella archive logs to an enterprise- owned storage?

by using the Application Programming Interface to fetch the logs

by sending logs via syslog to an on-premises or cloud-based syslog server

by the system administrator downloading the logs from the Cisco Umbrella web portal

by being configured to send logs to a self-managed AWS S3 bucket

Question 5

Which two mechanisms are used to control phishing attacks? (Choose two.)

Enable browser alerts for fraudulent websites.

Define security group memberships.

Revoke expired CRL of the websites.

Use antispyware software.

Implement email filtering techniques.

Question 6

What provides visibility and awareness into what is currently occurring on the network?

CMX

WMI

Prime Infrastructure

Telemetry

Question 7

In a PaaS model, which layer is the tenant responsible for maintaining and patching?

hypervisor

virtual machine

network

application

Question 8

Which VPN technology can support a multivendor environment and secure traffic between sites?

SSL VPN

GET VPN

FlexVPN

DMVPN

Question 9

Which information is required when adding a device to Firepower Management Center?

username and password

encryption method

device serial number

registration key

Question 10

Which policy represents a shared set of features or parameters that define the aspects of a managed device that are likely to be similar to other managed devices in a deployment?

group policy

access control policy

device management policy

platform service policy

Question 11

DRAG DROP
Drag and drop the Firepower Next Generation Intrustion Prevention System detectors from the left onto the correct definitions on the right.
350-701 dumps exhibit

Solution:
Reference: https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/detecting_specific_threats.html

Does this meet the goal?

Yes

Question 12

What are two Detection and Analytics Engines of Cognitive Threat Analytics? (Choose two.)

data exfiltration

command and control communication

intelligent proxy

snort

URL categorization

Question 13

Which feature is configured for managed devices in the device platform settings of the Firepower Management Center?

quality of service

time synchronization

network address translations

intrusion policy

Question 14

Which benefit does endpoint security provide the overall security posture of an organization?

It streamlines the incident response process to automatically perform digital forensics on the endpoint.

It allows the organization to mitigate web-based attacks as long as the user is active in the domain.

It allows the organization to detect and respond to threats at the edge of the network.

It allows the organization to detect and mitigate threats that the perimeter security devices do not detect.

Question 15

Which network monitoring solution uses streams and pushes operational data to provide a near real-time view of activity?

SNMP

SMTP

syslog

model-driven telemetry

Question 16

Which SNMPv3 configuration must be used to support the strongest security possible?

asa-host(config)#snmp-server group myv3 v3 priv asa-host(config)#snmp-server user andy myv3 auth sha cisco priv des ciscXXXXXXXX asa-host(config)#snmp-server host inside 10.255.254.1 version 3 andy

asa-host(config)#snmp-server group myv3 v3 noauth asa- host(config)#snmp-server user andy myv3 auth sha cisco priv aes 256 ciscXXXXXXXX asa- host(config)#snmp-server host inside 10.255.254.1 version 3 andy

asa-host(config)#snmp- server group myv3 v3 noauth asa-host(config)#snmp-server user andy myv3 auth sha cisco priv 3des ciscXXXXXXXXasa-host(config)#snmp-server host inside 10.255.254.1 version 3 andy

asa- host(config)#snmp-server group myv3 v3 priv asa-host(config)#snmp-server user andy myv3 auth sha cisco priv aes 256 ciscXXXXXXXX asa-host(config)#snmp-server host inside 10.255.254.1 version 3 andy

Question 17

What can be integrated with Cisco Threat Intelligence Director to provide information about security threats, which allows the SOC to proactively automate responses to those threats?

Cisco Umbrella

External Threat Feeds

Cisco Threat Grid

Cisco Stealthwatch

Question 18

Which two endpoint measures are used to minimize the chances of falling victim to phishing and social engineering attacks? (Choose two.)

Patch for cross-site scripting.

Perform backups to the private cloud.

Protect against input validation and character escapes in the endpoint.

Install a spam and virus email filter.

Protect systems with an up-to-date antimalware program.

Page: 1 / 28

Total 337 questions Full Exam Access