Question 1

Which SAFE component logically arranges the security capabilities into blueprints?

Options :

A : Reference Architectures

B : Cisco Validated Designs

C : Places in the Network

D : Secure Domains

Answer: A

Question 2

Which method is used by a Cisco XDR solution to prioritize actions?

Options :

A : Updating antivirus signatures

B : Monitoring endpoint activity

C : Leveraging AI and machine learning

D : Analyzing network traffic patterns

Answer: C

Question 3

Refer to the exhibit.Refer to the exhibit. An engineer must provide HTTPS access from the Google Cloud Platform virtual machine to the on-premises mail server. All other connections from the virtual machine to the mail server must be blocked. The indicated rules were applied to the firewall; however, the virtual machine cannot access the mail server. Which two actions should be performed on the firewall to meet the requirement? (Choose two.)

Options :

A : Set IP address 192.168.200.10 as the destination in rule 1.

B : Move up rule 2.

C : Set IP address 20.1.1.1 as the source in rule 1.

D : Configure a NAT rule.

E : Configure a security group.

Answer: A,D

Question 4

Which attack mitigation must be in place to prevent an attacker from authenticating to a service using a brute force attack?

Options :

A : Forced password change every 6 months

B : Use of a 100 ms delay between each authentication

C : Use of a password manager

D : Use of multifactor authentication for all accounts

Answer: D

Question 5

Refer to the exhibit.Refer to the exhibit. An engineer is troubleshooting an incident by using Cisco Secure Cloud Analytics. What is the cause of the issue?

Options :

A : An attacker installed an SSH server on the host.

B : An attacker opened port 22 on the host.

C : An FTP client was installed on a domain controller.

D : An FTP client was installed on a workstation.

Answer: C