Which of the following describes the Internal assessment?
Which of the following control plane security features extends policing functionality by allowing finer policing granularity?
Which hash algorithm uses complex sequence of relatively simple binary operations?
Which technology requires that SSH and AAA are configured before it can work?
Attacks may take a variety of forms. Which of the following describes the Blended threats as a threat category?
Which type of attack is most likely to be used in a man-in-the-middle attack?
Which of the options are primary reasons for an attacker to perform an IP spoofing attack? (Choose two)
What command can you run to verify that IOS resilient configuration is properly working?
Which option is a key principle of the Cisco Self-Defending Network strategy?
How is called the total amount of time the system owner will accept for a business process outage?
Which options are examples of data loss prevention solutions? (Choose two)
Which of the following control plane security features provides a necessary mechanism for deploying, monitoring, and troubleshooting CPP efficiently?
Which risk rating attribute allows you to rate how critical network components are in your infrastructure?
What mode negotiates the IKE Phase 2 SAs?
You have learned that a Trojan was propagated to several servers in your network. However, no preventative action was taken by an IPS. What is this an example of?
Which two statements are true regarding zones? (Choose two)
What are some of the security functions that can be managed using Cisco Configuration Professional? (Choose five)
Which threats are the most serious?
What is the purpose of GLBA information security compliance regulation?
Which actions are considered best practices? (Choose two)
What is the purpose of Sarbanes-Oxley information security compliance regulation?
A company opens a new mid-sized branch office. Which Cisco ESA models would ideally be deployed to this office? (Choose three)
Which clients meet the browser requirements for a Cisco ASA clientless SSL VPN? (Choose two)
Which type of IPS sensor offers the best protection against zero-day attacks?
How is called the most time that a system resource can remain unavailable before there is an unacceptable effect?
What can be used to offload the processing of encrypted data? (Choose two)
Which algorithm is commonly used as a secure method of exchanging encryption keys?
Cisco SecureX is an access control strategy that allows for more effective, higher-level policy creation and enforcement for mobile users. Which of the following describes the Cisco AnyConnect Client component?
Which of the following control plane security features is a Cisco IOS feature designed to allow users to manage the flow of traffic that is managed by the route processor of their network devices?
Select the statements that define the unique components of Cisco Configuration Professional used for security policy deployment. (Choose three)
Which actions belong to the operations and maintenance phase of the secure network life cycle? (Choose two)
Which of the following methods describes Network mapping attack?
Which of the following describes the Control plane packets classification? (Choose two)
Which statement is true about application layer firewalls?
Cisco SecureX is an access control strategy that allows for more effective, higher-level policy creation and enforcement for mobile users. Which of the following describes the Cisco SIO component?
Attacks may take a variety of forms. Which of the following describes the Spoofing as a threat category?
In an attempt to lower the number of malware outbreaks, a company creates an e-mail filter that blocks all e-mail with attachments. Which strategy are they attempting to use?
Threats to network security have become more sophisticated over the years. Identify the next generation threats facing organizations today. (Choose four)
Which features are most important for securing interactive and management access to an infrastructure device? (Choose four)
Which failover configuration is only available on units that are running in multiple context mode when implementing high availability on the ASA?
Which networking technology returns a message to the same direction it was received in, in order to reach the proper destination endpoint?
Which options are security services provided by digital signatures? (Choose three)
Which actions can you take to prevent VLAN hopping? (Choose two)
During which attack phase would an attacker use e-mail to extend the attack to multiple targets?
You need to implement port security on an access switch. Each switch port must be able to dynamically learn the MAC addresses of the connected devices. If an unauthorized device is detected on an interface, that interface should be placed into an err-disabled state. Which commands should you enter? (Choose two)
Which types of attacks can be mitigated by implementing port security? (Choose two)
Which of the following actions belong to the Operations and maintenance phase of the secure network life cycle? (Choose two)
What is the first step you should take when considering securing your network?
To verify the clientless SSL VPN, a compliant browser has been opened. Which prefix is the path changed to if the object requires authentication?
You are asked to configure SNMPv3 inside your network. An ACL named snmpacl, which specifies the IP addresses, has already been created, and will be able to perform SNMP queries. Which command would you enter to create a group named SNMPgroup which can send encrypted SNMP queries?
Which statement about role-based CLI access is true?
What is considered the number one criterion when classifying data for either the private or public sector?
Which IDS sensor action will send an ARC response to completely block the attacker's IP address?
You have noticed several workstations have been configured with an incorrect default gateway. Which type of attack is likely occurring?
What is the purpose of HIPAA information security compliance regulation?