NEW QUESTION 1
Which statement best embodies trust-centric security?

• A. Protect users from attacks by enabling strict security policies.
• B. Prevent attacks via an intelligence-based policy then detect, investigate, and remediate.
• C. Verify before granting access via identity-based policies for users, devices, apps, and locations.
• D. Verify before granting access via MDM software.

Answer: B

NEW QUESTION 2
Which two products are involved in discovering, classifying, and verifying profiles? (Choose two.)

• A. Cisco Security Connector
• B. Identity Services Engine
• C. Industrial Network Director
• D. Duo
• E. Advanced Malware Protection

Answer: AD

NEW QUESTION 3
Which two loT environment layers are protected by ISE? (Choose two )

• A. Access Points
• B. Endpoints
• C. Internet/Cloud
• D. Control Layer
• E. Things

Answer: AC

NEW QUESTION 4
What is one of the reasons that customers need a Visibility & Enforcement solution?

• A. Businesses can't see or protect devices on their network
• B. Network traffic is growing at an exponential rate
• C. Storage is moving from on-premises to cloud-based
• D. Organizations need the ability to block high-risk websites

Answer: B

NEW QUESTION 5
Which two areas require secure access? (Choose two.)

• A. Workforce
• B. Workflow
• C. Workspace
• D. Worktable
• E. Workloads

Answer: BE

NEW QUESTION 6
In which two ways has digitization transformed today's security threat landscape'? (Choose two.)

• A. Decreasing 3rd party applications
• B. Expanding complexity
• C. Growing ecosystem
• D. Decreasing endpoint ecosystem
• E. Increasing access points

Answer: AB

NEW QUESTION 7
Which feature of ISE has the capability to encounter a device new on the market, and correctly profile it to onboard it quickly and easily?

• A. Centralized policy management
• B. Platform exchange grid
• C. Context-aware access
• D. Device profiling

Answer: C

NEW QUESTION 8
Which three customer business objectives does Cisco's Advanced Threat solutions address? (Choose three.)

• A. Accelerated firewall implementation
• B. Lower TCO through intelligent API management
• C. Complete protection with holistic defense
• D. Visibility and control with a managed environment
• E. Comprehensive support with flexible solutions
• F. Secure communications with advanced access

Answer: DE

NEW QUESTION 9
What percent of threats did ASA with FirePOWER block that earned AMP the highest security effectiveness scores in third-party testing?

• A. 99 2%
• B. 956%
• C. 100%
• D. 98 5%

Answer: A

Explanation:
https://www.cisco.com/c/en/us/products/security/asa-firepower-services/index.html

NEW QUESTION 10
Which two attack vectors are protected by NGFW? (Choose two.)

• A. Mobile
• B. Data Center
• C. Email
• D. Web
• E. Cloud

Answer: BD

NEW QUESTION 11
What is an attribute of Cisco Talos?

• A. Real-time threat information
• B. 3rd party applications integrated through comprehensive APIs
• C. Blocks threats in real time
• D. Detection of threats communicated within 48 hours of occurrence

Answer: A

NEW QUESTION 12
What are two reasons why perimeter-based network security is no longer sufficient? (Choose two.)

• A. More users
• B. More devices
• C. More IT professionals
• D. More networks
• E. More vulnerabilities

Answer: BE

NEW QUESTION 13
What are three major features of StealthWatch? (Choose three )

• A. Threat-based anomaly detection
• B. Malware clustering
• C. Netflow monitoring
• D. Data Loss Prevention
• E. Real-time sandboxing
• F. Forensic investigation

Answer: BD

NEW QUESTION 14
How does AMP's file reputation feature help customers?

• A. It increases the protection to systems with exact fingerprinting
• B. It increases the accuracy of threat detection with Big Data analytics
• C. It enables point in time detection through a one-to-one engine
• D. It enables secure web browsing with cognitive threat analytics

Answer: C

NEW QUESTION 15
What are two features provided by ISE? (Choose two.)

• A. Guest Management
• B. DDOS attack prevention
• C. Network visibility
• D. Centralized policy management
• E. Device Firewalling

Answer: BD

NEW QUESTION 16
What are two solutions Cisco offers for email security? (Choose two.)

• A. Cloudlock
• B. AMP for Email Security
• C. Umbrella
• D. Meraki
• E. Tetration

Answer: AC

NEW QUESTION 17
What are two core functionalities of DNS-layer security? (Choose two.)

• A. Live threat intelligence
• B. Real-time sandboxing
• C. Proxy and file inspection
• D. Data analytics and monitoring
• E. URL filtering

Answer: AB

NEW QUESTION 18
What does remote access use to verify identity?

• A. MFA
• B. Agents
• C. Remote Access VPN
• D. AMP for Endpoints

Answer: C

NEW QUESTION 19
Which two attack vectors are protected by Malware Protection? (Choose two.)

• A. Voicemail
• B. Email
• C. Web
• D. Mobile
• E. Data Center

Answer: BD

NEW QUESTION 20
What is a key feature of Duo?

• A. Provides SSL VPN
• B. Authenticates user identity for remote access
• C. Automates policy creation for IT staff
• D. Supports pxGrid

Answer: A

NEW QUESTION 21
What are two key Cisco loT use cases? (Choose two.)

• A. Financial Institutions
• B. Mobile Utilities
• C. Industrial Security
• D. Parks and Recreation
• E. Connected Health

Answer: CE

NEW QUESTION 22
What are two steps organizations must take to secure loT? (Choose two )

• A. prevent blackouts
• B. update equipment
• C. acquire subscription solutions
• D. block contractors
• E. remediate malfunctions

Answer: CE

NEW QUESTION 23
Which feature of ISE provides role-based access control and command level authorization with logging for auditing?

• A. Platform exchange grid
• B. TACACS+Device Administration
• C. Context-aware access
• D. Centralized policy management

Answer: B

NEW QUESTION 24
......