Free Access Cisco.350-201.v2022-08-24.q70 Practice Test (Page 2)

Question 1

Refer to the exhibit.

Cisco Advanced Malware Protection installed on an end-user desktop has automatically submitted a low prevalence file to the Threat Grid analysis engine for further analysis. What should be concluded from this report?

A.The prioritized behavioral indicators of compromise justify the execution of the "ransomware" because the scores are high and indicate the likelihood that malicious ransomware has been detected.

B.The prioritized behavioral indicators of compromise justify the execution of the "ransomware" because the scores are low and indicate the likelihood that malicious ransomware has been detected.

C.The prioritized behavioral indicators of compromise do not justify the execution of the "ransomware" because the scores are high and do not indicate the likelihood of malicious ransomware.

D.The prioritized behavioral indicators of compromise do not justify the execution of the "ransomware" because the scores do not indicate the likelihood of malicious ransomware.

Question 2

Where do threat intelligence tools search for data to identify potential malicious IP addresses, domain names, and URLs?

A.customer data

B.Internet

C.internal database

D.internal cloud

Question 3

Refer to the exhibit.

Rapid Threat Containment using Cisco Secure Network Analytics (Stealthwatch) and ISE detects the threat of malware-infected 802.1x authenticated endpoints and places that endpoint into a quarantine VLAN using Adaptive Network Control policy. Which method was used to signal ISE to quarantine the endpoints?

A.syslog

B.SNMP

C.REST API

D.pxGrid

Question 4

A security incident affected an organization's critical business services, and the customer-side web API became unresponsive and crashed. An investigation revealed a spike of API call requests and a high number of inactive sessions during the incident. Which two recommendations should the engineers make to prevent similar incidents in the future? (Choose two.)

A.Determine API rate-limiting requirements.

B.Configure shorter timeout periods.

C.Implement API key maintenance.

D.Automate server-side error reporting for customers.

E.Decrease simultaneous API responses.

Question 5

A SOC team receives multiple alerts by a rule that detects requests to malicious URLs and informs the incident response team to block the malicious URLs requested on the firewall. Which action will improve the effectiveness of the process?

A.Create an automation script for blocking URLs on the firewall when the rule is triggered.

B.Inform the user by enabling an automated email response when the rule is triggered.

C.Block local to remote HTTP/HTTPS requests on the firewall for users who triggered the rule.

D.Inform the incident response team by enabling an automated email response when the rule is triggered.

Other Version: 490Cisco.350-201.v2024-10-08.q108; 1024Cisco.350-201.v2023-04-04.q66; 1309Cisco.350-201.v2022-11-05.q67; 1555Cisco.350-201.v2022-03-01.q65; 56Cisco.Prepawaypdf.350-201.v2021-12-18.by.heather.67q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 169PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 150Salesforce.Data-Architect.v2025-09-05.q216; 144Adobe.AD0-E605.v2025-09-05.q50

Question 1

Question 2

Question 3

Question 4

Question 5

Download PDF File