Question 1

In the zero-trust network access model, which criteria is used for continuous verification to modify trust levels?

Options :

A : System patching status

B : Detected threat levels

C : User and device behavior

D : Network traffic patterns

Answer: C

Question 2

Refer to the exhibit.Refer to the exhibit. An engineer is troubleshooting an incident by using Cisco Secure Cloud Analytics. What is the cause of the issue?

Options :

A : An attacker installed an SSH server on the host.

B : An attacker opened port 22 on the host.

C : An FTP client was installed on a domain controller.

D : An FTP client was installed on a workstation.

Answer: C

Question 3

Which method is used by a Cisco XDR solution to prioritize actions?

Options :

A : Updating antivirus signatures

B : Monitoring endpoint activity

C : Leveraging AI and machine learning

D : Analyzing network traffic patterns

Answer: C

Question 4

Which attack mitigation must be in place to prevent an attacker from authenticating to a service using a brute force attack?

Options :

A : Forced password change every 6 months

B : Use of a 100 ms delay between each authentication

C : Use of a password manager

D : Use of multifactor authentication for all accounts

Answer: D

Question 5

Which SAFE component logically arranges the security capabilities into blueprints?

Options :

A : Reference Architectures

B : Cisco Validated Designs

C : Places in the Network

D : Secure Domains

Answer: A