Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Cisco® 350-201

Cisco® 350-201 Exam Practice Questions (P. 3)

  • Full Access (139 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #11
DRAG DROP -
Drag and drop the phases to evaluate the security posture of an asset from the left onto the activity that happens during the phases on the right.
Select and Place:


Correct Answer:

Question #12
According to GDPR, what should be done with data to ensure its confidentiality, integrity, and availability?
  1. A
    Perform a vulnerability assessment
  2. B
    Conduct a data protection impact assessment
  3. C
    Conduct penetration testing
  4. D
    Perform awareness testing

Correct Answer:
B
Reference:
https://apdcat.gencat.cat/web/.content/03-documentacio/Reglament_general_de_proteccio_de_dades/documents/DPIA-Guide.pdf

Question #13
A payroll administrator noticed unexpected changes within a piece of software and reported the incident to the incident response team. Which actions should be taken at this step in the incident response workflow?
  1. A
    Classify the criticality of the information, research the attacker's motives, and identify missing patches
  2. B
    Determine the damage to the business, extract reports, and save evidence according to a chain of custody
  3. C
    Classify the attack vector, understand the scope of the event, and identify the vulnerabilities being exploited
  4. D
    Determine the attack surface, evaluate the risks involved, and communicate the incident according to the escalation plan

Correct Answer:
B

Question #14
A company recently completed an internal audit and discovered that there is CSRF vulnerability in 20 of its hosted applications. Based on the audit, which recommendation should an engineer make for patching?
  1. A
    Identify the business applications running on the assets
  2. B
    Update software to patch third-party software
  3. C
    Validate CSRF by executing exploits within Metasploit
  4. D
    Fix applications according to the risk scores

Correct Answer:
D

Question #15
An engineer is analyzing a possible compromise that happened a week ago when the company database servers unexpectedly went down. The analysis reveals that attackers tampered with Microsoft SQL Server Resolution Protocol and launched a DDoS attack. The engineer must act quickly to ensure that all systems are protected. Which two tools should be used to detect and mitigate this type of future attack? (Choose two.)
  1. A
    firewall
  2. B
    Wireshark
  3. C
    autopsy
  4. D
    SHA512
  5. E
    IPS

Correct Answer:
AB

Previous Questions Next Questions

All Pages