Free Access Cisco.350-201.v2024-10-08.q108 Practice Test (Page 2)

Question 1

A company launched an e-commerce website with multiple points of sale through internal and external e- stores. Customers access the stores from the public website, and employees access the stores from the intranet with an SSO. Which action is needed to comply with PCI standards for hardening the systems?

A.Mask PAN numbers

B.Encrypt access

C.Mask sales details

D.Encrypt personal data

Question 2

Refer to the exhibit.

Two types of clients are accessing the front ends and the core database that manages transactions, access control, and atomicity. What is the threat model for the SQL database?

A.An attacker can transfer data to an external server.

B.An attacker can initiate a DoS attack.

C.An attacker can read or change data.

D.An attacker can modify the access logs.

Question 3

A security incident affected an organization's critical business services, and the customer-side web API became unresponsive and crashed. An investigation revealed a spike of API call requests and a high number of inactive sessions during the incident. Which two recommendations should the engineers make to prevent similar incidents in the future? (Choose two.)

A.Implement API key maintenance.

B.Automate server-side error reporting for customers.

C.Determine API rate-limiting requirements.

D.Decrease simultaneous API responses.

E.Configure shorter timeout periods.

Question 4

A new malware variant is discovered hidden in pirated software that is distributed on the Internet. Executives have asked for an organizational risk assessment. The security officer is given a list of all assets. According to NIST, which two elements are missing to calculate the risk assessment? (Choose two.)

A.incident response playbooks

B.asset vulnerability assessment

C.report of staff members with asset relations

D.key assets and executives

E.malware analysis report

Question 5

A payroll administrator noticed unexpected changes within a piece of software and reported the incident to the incident response team. Which actions should be taken at this step in the incident response workflow?

A.Classify the attack vector, understand the scope of the event, and identify the vulnerabilities being exploited

B.Determine the damage to the business, extract reports, and save evidence according to a chain of custody

C.Classify the criticality of the information, research the attacker's motives, and identify missing patches

D.Determine the attack surface, evaluate the risks involved, and communicate the incident according to the escalation plan

Other Version: 1381Cisco.350-201.v2023-04-04.q66; 1643Cisco.350-201.v2022-11-05.q67; 1970Cisco.350-201.v2022-08-24.q70; 1812Cisco.350-201.v2022-03-01.q65; 56Cisco.Prepawaypdf.350-201.v2021-12-18.by.heather.67q.pdf

Latest Upload: 200PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 292Nokia.4A0-113.v2026-05-01.q69; 250EC-COUNCIL.312-49v11.v2026-04-30.q214; 227Microsoft.MB-820.v2026-04-30.q101; 207Salesforce.MC-202.v2026-04-30.q57; 204BICSI.INSTC_V8.v2026-04-29.q53; 332NMLS.MLO.v2026-04-28.q82; 241NCARB.Project-Management.v2026-04-28.q27; 457EMC.D-AV-DY-23.v2026-04-27.q184; 1109ServiceNow.CSA.v2026-04-27.q483

Question 1

Question 2

Question 3

Question 4

Question 5

Download PDF File