CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 200-201

Free 200-201 Exam Braindumps (page: 4)

Page 3 of 66
PDF with 435 Questions

Which process is used when IPS events are removed to improve data integrity?

  1. data availability
  2. data normalization
  3. data signature
  4. data protection

Answer(s): B



An analyst is investigating an incident in a SOC environment.
Which method is used to identify a session from a group of logs?

  1. sequence numbers
  2. IP identifier
  3. 5-tuple
  4. timestamps

Answer(s): C



What is a difference between SOAR and SIEM?

  1. SOAR platforms are used for threat and vulnerability management, but SIEM applications are not
  2. SIEM applications are used for threat and vulnerability management, but SOAR platforms are not
  3. SOAR receives information from a single platform and delivers it to a SIEM
  4. SIEM receives information from a single platform and delivers it to a SOAR

Answer(s): A



What is the difference between mandatory access control (MAC) and discretionary access control (DAC)?

  1. MAC is controlled by the discretion of the owner and DAC is controlled by an administrator
  2. MAC is the strictest of all levels of control and DAC is object-based access
  3. DAC is controlled by the operating system and MAC is controlled by an administrator
  4. DAC is the strictest of all levels of control and MAC is object-based access

Answer(s): B






Post your Comments and Discuss Cisco® 200-201 exam with other Community members:

200-201 Discussions & Posts