300-215 Question #127: Real Exam Question with Answer & Explanation

The correct answer is B: Retrospective security. Retrospective security continuously re-evaluates files and alerts analysts when a previously unknown file is later classified as malicious.

Submitted by fernanda_arg· Mar 6, 2026Incident Response Techniques

Question

Which Cisco capability allows analysts to determine when a file became malicious AFTER it was initially allowed?

Options

ACloud-delivered firewall policies
BRetrospective security
CDNS-layer enforcement
DNetwork access control

Explanation

Retrospective security continuously re-evaluates files and alerts analysts when a previously unknown file is later classified as malicious.

Topics

#Cisco security#Retrospective security#File reputation#Threat detection

Community Discussion

No community discussion yet for this question.

Full 300-215 Practice Browse All 300-215 Questions