CCNP Security 350-701 Dumps | Updated Sep 25, 2021 - Actualtests4sure
Master 2021 Latest The Questions CCNP Security and Pass 350-701 Real Exam!
NEW QUESTION 23
In a PaaS model, which layer is the tenant responsible for maintaining and patching?
- A. network
- B. hypervisor
- C. virtual machine
- D. application
Answer: D
Explanation:
Explanation/Reference: https://www.bmc.com/blogs/saas-vs-paas-vs-iaas-whats-the-difference-and-how-to-choose/
NEW QUESTION 24
Which Cisco platform ensures that machines that connect to organizational networks have the recommended antivirus definitions and patches to help prevent an organizational malware outbreak?
- A. Cisco WiSM
- B. Cisco ISE
- C. Cisco ESA
- D. Cisco Prime Infrastructure
Answer: B
Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118188-qanda-esa-00.html
NEW QUESTION 25
With which components does a southbound API within a software-defined network architecture communicate?
- A. devices such as routers and switches
- B. controllers within the network
- C. applications
- D. appliances
Answer: A
NEW QUESTION 26
What does the Cloudlock Apps Firewall do to mitigate security concerns from an application perspective?
- A. It discovers and controls cloud apps that are connected to a company's corporate environment.
- B. It deletes any application that does not belong in the network.
- C. It sends the application information to an administrator to act on.
- D. It allows the administrator to quarantine malicious files so that the application can function, just not maliciously.
Answer: A
Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/products/security/cloudlock/index.html#~features
NEW QUESTION 27
Drag and drop the solutions from the left onto the solution's benefits on the right.
Answer:
Explanation:
NEW QUESTION 28
Which algorithm provides asymmetric encryption?
- A. AES
- B. RSA
- C. 3DES
- D. RC4
Answer: B
Explanation:
Reference:
https://securityboulevard.com/2020/05/types-of-encryption-5-encryption-algorithms-how-to-choose-the-right-one/#:~:text=Standard%20asymmetric%20encryption%20algorithms%20include,%2C%20El%20Gamal%2C%20and%20DSA.
NEW QUESTION 29
An organization is trying to improve their Defense in Depth by blocking malicious destinations prior to a connection being established. The solution must be able to block certain applications from being used within the network Which product should be used to accomplish this goal?
- A. Cisco Umbrella
- B. Cisco Firepower
- C. ISE
- D. AMP
Answer: B
Explanation:
Explanation
NEW QUESTION 30
What are two rootkit types? (Choose two)
- A. buffer mode
- B. virtual
- C. user mode
- D. bootloader
- E. registry
Answer: C,D
Explanation:
Explanation
The term 'rootkit' originally comes from the Unix world, where the word 'root' is used to describe a user with the highest possible level of access privileges, similar to an 'Administrator' in Windows. The word 'kit' refers to the software that grants root-level access to the machine. Put the two together and you get 'rootkit', a program that gives someone - with legitimate or malicious intentions - privileged access to a computer.
There are four main types of rootkits: Kernel rootkits, User mode rootkits, Bootloader rootkits, Memory rootkits
NEW QUESTION 31
In which situation should an Endpoint Detection and Response solution be chosen versus an Endpoint Protection Platform?
- A. when there is no need to have the solution centrally managed
- B. when there is no firewall on the network
- C. when there is a need for traditional anti-malware detection
- D. when there is a need to have more advanced detection capabilities
Answer: D
Explanation:
Explanation
Explanation
Endpoint protection platforms (EPP) prevent endpoint security threats like known and unknown malware.
Endpoint detection and response (EDR) solutions can detect and respond to threats that your EPP and other security tools did not catch.
EDR and EPP have similar goals but are designed to fulfill different purposes. EPP is designed to provide device-level protection by identifying malicious files, detecting potentially malicious activity, and providing tools for incident investigation and response.
The preventative nature of EPP complements proactive EDR. EPP acts as the first line of defense, filtering out attacks that can be detected by the organization's deployed security solutions. EDR acts as a second layer of protection, enabling security analysts to perform threat hunting and identify more subtle threats to the endpoint.
Effective endpoint defense requires a solution that integrates the capabilities of both EDR and EPP to provide protection against cyber threats without overwhelming an organization's security team.
NEW QUESTION 32
What are the two types of managed Intercloud Fabric deployment models? (Choose two.)
- A. Public managed
- B. Enterprise managed
- C. Hybrid managed
- D. Service Provider managed
- E. User managed
Answer: B,D
Explanation:
Explanation
NEW QUESTION 33
Which two deployment modes does the Cisco ASA FirePower module support? (Choose two)
- A. passive monitor-only mode
- B. routed mode
- C. active mode
- D. transparent mode
- E. inline mode
Answer: C,E
Explanation:
Explanation You can configure your ASA FirePOWER module using one of the following deployment models: You can configure your ASA FirePOWER module in either an inline or a monitor-only (inline tap or passive) deployment. Reference: https://www.cisco.com/c/en/us/td/docs/security/asa/asa92/asdm72/firewall/asa-firewall-asdm/ modules-sfr.html You can configure your ASA FirePOWER module using one of the following deployment models:
You can configure your ASA FirePOWER module in either an inline or a monitor-only (inline tap or passive) deployment.
Reference:
Explanation You can configure your ASA FirePOWER module using one of the following deployment models: You can configure your ASA FirePOWER module in either an inline or a monitor-only (inline tap or passive) deployment. Reference: https://www.cisco.com/c/en/us/td/docs/security/asa/asa92/asdm72/firewall/asa-firewall-asdm/ modules-sfr.html
NEW QUESTION 34
What is the difference between deceptive phishing and spear phishing?
- A. Spear phishing is when the attack is aimed at the C-level executives of an organization
- B. Deceptive phishing is an attacked aimed at a specific user in the organization who holds a C-level role.
- C. A spear phishing campaign is aimed at a specific person versus a group of people.
- D. Deceptive phishing hijacks and manipulates the DNS server of the victim and redirects the user to a false webpage.
Answer: A
NEW QUESTION 35
Drag and drop the Firepower Next Generation Intrustion Prevention System detectors from the left onto the correct definitions on the right.
Answer:
Explanation:

NEW QUESTION 36
Which information is required when adding a device to Firepower Management Center?
- A. registration key
- B. username and password
- C. encryption method
- D. device serial number
Answer: A
NEW QUESTION 37
A Cisco FTD engineer is creating a new IKEv2 policy called s2s00123456789 for their organization to allow for additional protocols to terminate network devices with. They currently only have one policy established and need the new policy to be a backup in case some devices cannot support the stronger algorithms listed in the primary policy. What should be done in order to support this?
- A. Change the integrity algorithms to SHA* to support all SHA algorithms in the primary policy
- B. Change the encryption to AES* to support all AES algorithms in the primary policy
- C. Make the priority for the primary policy 10 and the new policy 1
- D. Make the priority for the new policy 5 and the primary policy 1
Answer: D
Explanation:
Explanation All IKE policies on the device are sent to the remote peer regardless of what is in the selected policy section. The first IKE Policy matched by the remote peer will be selected for the VPN connection. Choose which policy is sent first using the priority field. Priority 1 will be sent first. Reference: https://www.cisco.com/c/en/us/support/docs/security-vpn/ipsec-negotiation-ike-protocols/215470- site-to-site-vpn-configuration-on-ftd-ma.html All IKE policies on the device are sent to the remote peer regardless of what is in the selected policy section.
The first IKE Policy matched by the remote peer will be selected for the VPN connection. Choose which policy is sent first using the priority field. Priority 1 will be sent first.
Explanation All IKE policies on the device are sent to the remote peer regardless of what is in the selected policy section. The first IKE Policy matched by the remote peer will be selected for the VPN connection. Choose which policy is sent first using the priority field. Priority 1 will be sent first. Reference: https://www.cisco.com/c/en/us/support/docs/security-vpn/ipsec-negotiation-ike-protocols/215470- site-to-site-vpn-configuration-on-ftd-ma.html
NEW QUESTION 38
What are two types of managed intercloud fabric deployment models? (Choose two.)
- A. Public managed
- B. Enterprise managed
- C. Hybrid managed
- D. Service Provider managed
- E. User managed
Answer: B,D
NEW QUESTION 39
Drag and drop the Firepower Next Generation Intrustion Prevention System detectors from the left onto the correct definitions on the right.
Answer:
Explanation:
Explanation
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-configguide-v64/detecti
NEW QUESTION 40
Refer to the exhibit.
An administrator is adding a new Cisco FTD device to their network and wants to manage it with Cisco FMC.
The Cisco FTD is not behind a NAT device. Which command is needed to enable this on the Cisco FTD?
- A. configure manager add <FMC IP address> <registration key>
- B. configure manager add DONTRESOLVE <registration key> FTD123
- C. configure manager add DONTRESOLVE kregistration key>
- D. configure manager add <FMC IP address> <registration key> 16
Answer: A
Explanation:
Explanation Explanation To let FMC manages FTD, first we need to add manager from the FTD and assign a register key of your choice. The command configure manager add 1.1.1.2 the_registration_key_you_want, where 1.1.1.2 is the IP address of the FMC, you need to use the same registration key in FMC when adding this FTD as a managed device. Reference: https://cyruslab.net/2019/09/03/ciscocisco-firepower-lab-setup/ Explanation To let FMC manages FTD, first we need to add manager from the FTD and assign a register key of your choice. The command configure manager add 1.1.1.2 the_registration_key_you_want, where 1.1.1.2 is the IP address of the FMC, you need to use the same registration key in FMC when adding this FTD as a managed device.
Explanation Explanation To let FMC manages FTD, first we need to add manager from the FTD and assign a register key of your choice. The command configure manager add 1.1.1.2 the_registration_key_you_want, where 1.1.1.2 is the IP address of the FMC, you need to use the same registration key in FMC when adding this FTD as a managed device. Reference: https://cyruslab.net/2019/09/03/ciscocisco-firepower-lab-setup/
NEW QUESTION 41
......
A fully updated 2021 350-701 Exam Dumps exam guide from training expert Actualtests4sure: https://www.actualtests4sure.com/350-701-test-questions.html
Practice To 350-701 - Actualtests4sure Remarkable Practice On your Implementing and Operating Cisco Security Core Technologies Exam: https://drive.google.com/open?id=1v2XCWZaM828c3QYrpJZfhJOwPt3_Yyof

