CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 350-201

Free 350-201 Exam Braindumps (page: 5)

Page 4 of 35
PDF with 139 Questions

A payroll administrator noticed unexpected changes within a piece of software and reported the incident to the incident response team. Which actions should be taken at this step in the incident response workflow?

  1. Classify the criticality of the information, research the attacker’s motives, and identify missing patches
  2. Determine the damage to the business, extract reports, and save evidence according to a chain of custody
  3. Classify the attack vector, understand the scope of the event, and identify the vulnerabilities being exploited
  4. Determine the attack surface, evaluate the risks involved, and communicate the incident according to the escalation plan

Answer(s): B



A company recently completed an internal audit and discovered that there is CSRF vulnerability in 20 of its hosted applications. Based on the audit, which recommendation should an engineer make for patching?

  1. Identify the business applications running on the assets
  2. Update software to patch third-party software
  3. Validate CSRF by executing exploits within Metasploit
  4. Fix applications according to the risk scores

Answer(s): D



An engineer is analyzing a possible compromise that happened a week ago when the company database servers unexpectedly went down. The analysis reveals that attackers tampered with Microsoft SQL Server Resolution Protocol and launched a DDoS attack. The engineer must act quickly to ensure that all systems are protected. Which two tools should be used to detect and mitigate this type of future attack? (Choose two.)

  1. firewall
  2. Wireshark
  3. autopsy
  4. SHA512
  5. IPS

Answer(s): A,B



A European-based advertisement company collects tracking information from partner websites and stores it on a local server to provide tailored ads. Which standard must the company follow to safeguard the resting data?

  1. HIPAA
  2. PCI-DSS
  3. Sarbanes-Oxley
  4. GDPR

Answer(s): D


Reference:

https://www.thesslstore.com/blog/10-data-privacy-and-encryption-laws-every-business-needs-to-know/






Post your Comments and Discuss Cisco® 350-201 exam with other Community members:

350-201 Discussions & Posts