300-740 Exam Questions
70 real 300-740 exam questions with expert-verified answers and explanations. Page 2 of 2.
- Question #51User and Device Security
According to the MITRE ATT&CK framework, which approach should be used to mitigate exploitation risks?
MITRE ATT&CKPatch ManagementVulnerability MitigationExploitation Prevention - Question #52Application and Data Security
Which web application firewall deployment in the Cisco Secure DDoS protects against application layer and volumetric attacks?
DDoS ProtectionWeb Application FirewallDeployment ModesCisco Secure DDoS - Question #53User and Device Security
Refer to the exhibit. A security engineer must configure a posture policy in Cisco ISE to ensure that employee laptops have a critical patch for WannaCry installed before they can...
Cisco ISEPosture ComplianceFile ConditionPatch Verification - Question #54Cisco Umbrella
A network administrator uses Cisco Umbrella to protect internal users from malicious content. A customer is using an IPsec tunnel to connect to an Umbrella Organization. The admini...
Firewall PolicyPort 3389 BlockingOutbound Traffic ControlUmbrella Policy Types - Question #55Network and Cloud Security
Refer to the exhibit. An engineer configured a default segmentation policy in Cisco Secure Workload to block SMTP traffic. During testing, it is observed that the SMTP traffic is s...
Cisco Secure WorkloadNetwork Segmentation PolicySMTP Port ConfigurationPolicy Parameters - Question #56Threat Response
How does Cisco XDR perform threat prioritization by using its visibility across multiple platforms?
XDRThreat PrioritizationRisk CorrelationAsset Value - Question #57Threat Response
Utilizing response automation can significantly reduce the time to _________ to incidents, thereby minimizing potential damage.
Incident ResponseResponse AutomationMTTRThreat Management - Question #58User and Device Security
User and device security in the Cisco Security Reference Architecture primarily focuses on:
AuthenticationEndpoint ProtectionDevice Security - Question #59Cloud Security Architecture
Determining security policies for cloud platform security should involve:
cloud security policiesplatform assessmentcloud architecturesecurity design - Question #60Threat Response
Response automation in cybersecurity is primarily used for:
response automationthreat detectionincident responseSOAR - Question #61Threat Response
Based on telemetry reports, actions might include adjusting _________ to better protect against identified threats.
TelemetrySecurity PoliciesThreat ResponseSecurity Operations - Question #62User and Device Security
Multifactor authentication enhances security by requiring:
Multifactor AuthenticationAccess ControlAuthentication MethodsIdentity Verification - Question #63User and Device Security
The main advantage of implementing user and device authentication via identity certificates is:
Identity CertificatesUser AuthenticationDevice AuthenticationAuthentication Methods - Question #64User and Device Security
A common identity across systems is essential for:
Identity ManagementSingle Sign-OnAccess Control - Question #65User and Device Security
Implementing _________ via identity certificates is a secure method to verify the identities of users and devices accessing network resources.
identity certificatesauthenticationdevice identityPKI - Question #66Threat Response
Which component of the Cisco Security Reference Architecture focuses on identifying and analyzing threats?
threat intelligencesecurity reference architecturethreat analysisthreat identification - Question #67Visibility and Assurance
Benefits of using visibility and logging tools like SIEM include:
SIEMVisibility and LoggingThreat DetectionCentralized Monitoring - Question #68Threat Response
When an application is compromised, the first response action is typically to:
Incident ResponseApplication CompromiseBreach ContainmentFirst Response - Question #69Cloud Security Architecture
Converged multicloud policy ensures:
Converged multicloudPolicy consistencyUnified securityMulticloud environments - Question #70Visibility and Assurance
To validate traffic flow and telemetry reports for baseline and compliance behavior analysis, one should use:
Network VisibilityTelemetry MonitoringCompliance AnalysisTraffic Validation