NEW QUESTION 1
Which two features are part of the ISE Plus license? (Choose two.)

• A. Threat Centric NAC
• B. Profiling and feed services
• C. Guest management
• D. Cisco pxGrid
• E. Basic network Access AA
• F. 802 IX

Answer: BD

Explanation: ASAS Policy and Access SE Module 5

NEW QUESTION 2
Which is a Cisco recommended driver for network security?

• A. Offer a threat-foe used security solution
• B. Provide automated impact assessment
• C. Focus on point products
• D. Assign central, role-based management

Answer: A

NEW QUESTION 3
Which are two features of Cisco FirePOWER NGFW? (Choose two.)

• A. Next generation IPS to detect intrusions and prevent threats
• B. URL filtering to restrict access to specific sites and sub-sites
• C. Data Loss Prevention
• D. Increased IT management needs

Answer: AB

NEW QUESTION 4
Which StealthWatch device monitors, analyzes, separates, categorizes, and stores information from each flow, allowing it to create a baseline of typical expected network activity?

• A. Flow collector
• B. Advanced malware protection
• C. Forensic investigation
• D. Malware clustering

Answer: A

NEW QUESTION 5
Which is a feature mentioned in the DNS security module?

• A. Layer-4 monitoring
• B. Umbrella
• C. Real-time sandboxing
• D. Data Loss Prevention

Answer: B

Explanation: ASAS Security Web and Email SE Module 2

NEW QUESTION 6
Which Policy and Access solution technology combines posture checks and authentication across wired, wireless, and VPN networks?

• A. Cisco AnyConnect
• B. Next Generation Intrusion Prevention System
• C. Cisco Stealthwatch
• D. ASA 2100 series

Answer: A

Explanation: Cisco Cloud Security SE - Module 3

NEW QUESTION 7
Which three NGFW and NGIPS features support the 'Complex Remote Access' use case? (Choose three.)

• A. Support for device onboarding
• B. Users protected regardless of physical location
• C. Fuzzy Fingerprinting
• D. Detection of anomalous traffic
• E. Controls and protections extended beyond VPN controls
• F. Secure access extended to all users

Answer: BEF

Explanation: ASAS Security NGFW and NGIPS SE Module 4

NEW QUESTION 8
How many web requests does Talos process per month?

• A. 1.5 million
• B. 100,000
• C. 130 billion
• D. 130 million

Answer: C

Explanation: ASAS Cisco Security and Threat Landscape Module 1

NEW QUESTION 9
How does the Cisco AnyConnect AMP Module help to protect customer's networks?

• A. AMP is a unified agent that combines posture check and authentication across wired wireless, and VPN networks.
• B. AMP Module can profile devices before allowing them to connect
• C. AMP provides highly secure access for select enterprise mobile applications
• D. AnyConnect can deploy AMP for Endpoints for Windows or OSX

Answer: D

Explanation: ASAS Policy and Access SE Module 5

NEW QUESTION 10
Which is a Cisco solution features retrospective security?

• A. AMP for Endpoint
• B. Cisco Defense Orchestrator
• C. Umbrella
• D. Investigate

Answer: A

Explanation: ASAS Cisco Cloud Security SE - Module 3

NEW QUESTION 11
Which feature discovers and controls malicious cloud apps connected to the corporate environ merit?

• A. Umbrella
• B. Cognitive Threat Analytics
• C. Cloudlock
• D. Investigate

Answer: C

Explanation: Cisco Cloudlock Apps Firewall discovers and controls malicious cloud apps connected to your corporate environment, and provides the world’s largest crowd-sourced security solution to identify individual app risk, using our Community Trust Rating.

NEW QUESTION 12
How is Cisco Security able to dynamically add IP addresses of known malware domains to its list of ports to detect and block?

• A. Reputation Filtering
• B. Layer-4 Monitoring
• C. Data Loss Prevention
• D. URL Filtering

Answer: B

Explanation: ASAS Security Web and Email SE Module 2

NEW QUESTION 13
What is a main benefit of Cisco's Clouldlock Data Loss Prevention feature?

• A. Reduces cost with easy implementation and installation
• B. Provides in depth cloud app analytics and tracking
• C. Allow organizations to retroactively identify malware within their environment
• D. Includes 70+ out of the box policies for enforcement, such as PCI, HIPAA, etc

Answer: D

Explanation: ASAS Cisco Cloud Security SE - Module 3

NEW QUESTION 14
Which is a component of Cisco's Web and E-mail Security Solution?

• A. Device Profiling
• B. Next Generation Intrusion Prevention System
• C. Next Generation Firewall
• D. DNS-Layer security

Answer: D

Explanation: ASAS Security Web and Email SE Module 2

NEW QUESTION 15
Which three features provided by NGFW and NGIPS support the 'Internet Edge" use case? (Choose three.)

• A. Supports High Availability
• B. Support for profiling devices
• C. Supports dynamic routing protocols such as OSPF or BGP
• D. Support for Platform exchange grid
• E. Support for High Bandwith environments
• F. Support for integrated posture assessment

Answer: ACE

Explanation: ASAS Security NGFW and NGIPS SE Module 4

NEW QUESTION 16
How does AMP’s file reputation feature help customers?

• A. It automatically detects polymorphic variants of known malware
• B. It increases time to detection with exact data analytics
• C. It increases the protection to systems with exact fingerprinting
• D. It enables secure web browsing with cognitive threat analytics

Answer: A

NEW QUESTION 17
Which license subscription terms are available for AMP licensing?

• A. 1 month 3 months 6 months
• B. 1 yea
• C. 5 year
• D. 10 years
• E. 5 years 10 years 30 years
• F. 1 yea
• G. 3 year
• H. 6 years

Answer: D

Explanation: ASA Security Advanced Threats SE Module 6