Question 1

Which of the following is true about network security policies?

Options :

A : They should be regularly reviewed and updated

B : They are only useful for larger organizations

C : They are not necessary if a firewall is in place

D : They should be written in a way that is difficult for employees to understand

Answer: A

Question 2

Which two basic metrics should be taken into consideration when assigning a severity to a vulnerability during an assessment? (Choose 2.)

Options :

A : The likelihood that an adversary can and will exploit the vulnerability

B : The impacts that an exploit of the vulnerability will have on the organization

C : The time involved in choosing replacement software to replace older systems

D : The age of the hardware running the software that contains the vulnerability

Answer: A,B

Question 3

Which technology can provide the ability to track and detect malicious software on an endpoint device?

Options :

A : Firewall

B : Antivirus software

C : Virtual private network

D : Intrusion detection system

Answer: B

Question 4

Which of the following features of Cisco Advanced Malware Protection (AMP) for Endpoints allows for continuous monitoring and analysis of files and processes on endpoints?

Options :

A : Malware Scanning

B : File Retrospection

C : Device Profiling

D : Network Sandboxing

Answer: B

Question 5

Which of the following is an example of a security compliance best practice in the context of auditing network devices?

Options :

A : Configuring strong passwords for device access

B : Disabling all logging on network devices

C : Allowing all traffic to pass through the network devices

D : Using default configurations for network devices

Answer: A