Browse Exams Pricing

Exams350-201(NEW-127Q)Questions

350-201(NEW-127Q) Exam Questions

116 real 350-201(NEW-127Q) exam questions with expert-verified answers and explanations. Page 2 of 3.

Question #51Secure Development and Deployment
A software company is adopting a SecDevOps approach to improve the security integration in its development cycle for a new cloud-based application suite. The suite includes custome...
SecDevOpsCI/CD Pipeline SecurityAutomated Security ScanningContainer Orchestration
Question #52Threat Intelligence and Attack Framework Analysis
Cyber threat actors infiltrated a software developer company and modified a security patch to include a malicious backdoor. The security updates installed modified patches on custo...
Supply Chain CompromiseMITRE ATT&CKThreat IntelligenceIncident Analysis
Question #53Network Programmability and API Fundamentals
Refer to the exhibit. Which data format is being used?
XMLdata formatsAPIserialization
Question #54Data Management and Integration
An engineer is moving data from NAS servers in different departments to a combined storage database so that the data can be accessed and analyzed by the organization on-demand. Whi...
data ingestiondata consolidationstorage integrationETL processes
Question #55Incident Response and Handling
The incident response team of an organization uncovers a complex cyber attack involving multiple endpoints, advanced malware, and data exfiltration. The team successfully contained...
Incident Response LifecycleEradicationSystem RecoveryThreat Containment
Question #56Threat Modeling and Risk Assessment
A CIO of a Health Care facility recently experienced theft of customer data. The CIO is focused on numerous potential threat vectors and wants to implement improved detection and p...
Threat ModelingData Asset IdentificationRisk AssessmentSecurity Mitigation
Question #57Threat Analysis and Malware Research
A threat research lab is analyzing malware that employs polymorphic techniques to constantly modify its code structure. Which sequence of actions should the cybersecurity experts f...
Malware AnalysisPolymorphic MalwareDynamic AnalysisStatic Analysis
Question #58Detection and Analysis
A SOC analyst detects malware that is destined for a Linux-based OS. After using fully automated tools, the analyst used automated inspection tools but also decides to examine the...
Malware AnalysisStatic AnalysisString AnalysisIncident Response
Question #59Incident Response and Forensics
A security analyst is examining network traffic patterns to determine the sequence of events during a cyber attack on an organization's web server. The analyst has collected the in...
Brute Force AttacksIncident ForensicsNetwork Traffic AnalysisAttack Sequencing
Question #60Incident Response
Employees receive an email from an executive within the organization that summarizes a recent security breach and requests that employees verify their credentials through a provide...
phishing detectionemail header analysisincident response proceduresthreat investigation
Question #61Threat Analysis and Incident Response
A security analyst is investigating an attack on an organization's database server and must determine the sequence of events based on the analysis of traffic patterns. The observat...
Attack SequencingIncident InvestigationNetwork ForensicsCybersecurity Kill Chain
Question #62Incident Response and Management
The engineer discovered a security breach, and upon further analysis, discovered a malware presence on several assets. According to the incident response workflow, which steps shou...
Incident ResponseContainment PhaseThreat MitigationBreach Investigation
Question #63Incident Response and Threat Analysis
An organization had a ransomware event. The engineer working the case discovered an unknown binary file and sent it to the Cisco Secure Malware Analytics for analysis. Which step m...
Malware AnalysisIncident Response WorkflowCisco Secure Malware AnalyticsThreat Investigation
Question #64Security Operations and Threat Detection
Which tools should a security team use to perform advanced security data analytics to identify sophisticated threats within large datasets?
SIEMUEBAThreat AnalyticsAnomaly Detection
Question #65Threat Detection and Analysis
A security operations team is experiencing frequent false positives from detection rules designed to flag suspicious outbound network traffic in their SIEM system. The rules are ba...
SIEMDetection RulesFalse PositivesBaselining
Question #66Governance, Risk, and Compliance
An organization plans to become ISO 27001 compliant and asked a compliance team to complete the initial implementation project. Which type of information is appropriate to present...
ISO 27001 ComplianceStakeholder CommunicationCompliance GovernanceRisk Management
Question #67Incident Response and Management
An EDR system alerted the incident response team about the activity of malicious files on the HR manager endpoint. The infected endpoint was isolated from the network. Further exam...
Incident ResponseNIST 800-61ContainmentScope Assessment
Question #68Threat Detection and Incident Response
Security Engineer has received alert from the DLP system that a certain marketing team user has created 20 image files, exactly the same size except for the last one, with a total...
DLP MonitoringData Exfiltration DetectionPattern AnalysisIncident Investigation
Question #69Incident Detection and Response
An engineer received an alert from an intrusion detection system that suspicious network traffic was initiated from the internal network. Further analysis showed unexplained use of...
Privilege EscalationIntrusion DetectionAccess ControlSystem Compromise
Question #70Infrastructure Security
An organization in the automotive industry is using multifunction devices that use SMB v1. An engineer must establish communication between legacy devices and must disable obsolete...
SMB Protocol SecurityLegacy Device HardeningProtocol DeprecationSecure Communications
Question #71Infrastructure Security and Secure Deployment
A security engineer must deploy a new server for the accounting department. The engineer prepared the server and applications list to be installed. According to the company's IT se...
Server HardeningBIOS/Firmware SecurityNetwork IsolationAccess Control
Question #72Vulnerability Assessment and Risk Management
An organization is conducting a vulnerability triage and risk analysis. The security team wants to prioritize vulnerabilities effectively using industry scoring systems. Which meth...
CVSS FrameworkVulnerability TriageRisk AssessmentThreat Intelligence
Question #73Threat Defense and URL Reputation
Refer to the exhibit. An engineer is trying to access a website and the browser shows this error. Which tool should be used to check the URL disposition?
Threat IntelligenceURL ReputationCisco Security ToolsWeb Security
Question #74Access Control
During an internal audit, an information security officer discovered that some non-authorized users have executable privileges on all files in the system, but the script did not wo...
File PermissionsLinux CommandsAccess ControlPrivilege Audit
Question #75Email and Web Gateway Security
An engineer is analyzing a case of an employee receiving a seemingly trustworthy email that included a link to a management feedback request. The employee opened the link and was r...
PhishingEmail SecurityRansomwareThreat Prevention
Question #76Incident Response and Containment
An organization detected unauthorized access to its customer database that contains sensitive PII. The incident response team must respond swiftly using automation and escalation p...
Incident ResponseSecurity AutomationNetwork ContainmentDigital Forensics
Question #77Threat Intelligence and Analysis
A large amount of malicious spam was detected with suspicious attachments. The attachments are being automatically submitted to a free online malware analysis resource for review....
rate limitingmalware analysisthreat intelligenceonline services
Question #78Network Security Architecture
An organization is undergoing a network hardening initiative to defend against increasingly sophisticated cyber threats. Their infrastructure supports multiple interconnected servi...
Network SegmentationZero Trust ArchitectureDeep Packet InspectionLateral Movement Prevention
Question #79Incident Handling and Response
An engineer is investigating a compromised host on the network that was flagged by an advanced threat detection system. Upon further analysis, the engineer discovers that the infec...
Incident Response PhasesThreat DetectionMalware AnalysisDGA & C&C Communication
Question #80Threat Analysis and Risk Management
A medical center managing board decides to use activity trackers to evaluate patients more accurately by recording their heart rate and accelerometer data simultaneously. Trackers...
Data Encryption in TransitHealthcare Data PrivacyWireless Device SecurityMedical Device Threats
Question #81Infrastructure Security and Hardening
What does the process of hardening machine images involve when preparing them for deployment in an IT infrastructure?
Image HardeningSecurity ConfigurationVulnerability MitigationInfrastructure Security
Question #82Incident Response and Threat Management
Refer to the exhibit. In a corporate environment, a cybersecurity analyst is responsible for monitoring Windows server audit logs for security incidents. During routine log analysi...
Windows Event Log AnalysisIncident Response PrioritizationActive Threat DetectionSecurity Event Triage
Question #83DevOps and Infrastructure Automation
What is an open-source automation solutions for continuous integration, delivery, and deployment?
JenkinsCI/CDAutomationDevOps Tools
Question #84Threat Modeling and Data Protection
A thief has broken into the CEO's car and stolen the executive laptop. The criminal is currently running it with forward-facing dawn shop. The machine is encrypted, backed up, and...
Data ClassificationThreat ModelingData StatesInformation Protection
Question #85Risk Management
An IT manager at a manufacturing company is conducting a risk analysis involving the company's digital asset management system, network vulnerabilities, and potential external cybe...
Risk Assessment FrameworkAsset ValuationVulnerability AssessmentThreat Analysis
Question #86Security Assessment and Vulnerability Management
Refer to the exhibit. Vulnerability 1: Outdated web server software Vulnerability 2: Insecure SSL/TLS configurations Vulnerability 3: Unpatched database management system Vulnerabi...
Vulnerability AssessmentRisk PrioritizationRemediation StrategyAccess Control
Question #87Endpoint Security
An engineer must mitigate a recent zero-day vulnerability affecting RDP service where an attacker connects to a targeted system and sends crafted requests, followed by an arbitrary...
Remote Desktop ProtocolNetwork Level AuthenticationZero-day MitigationAccess Control
Question #88Incident Response and Forensics
Refer to the exhibit. An engineer is performing static analysis on malware and knows that it is capturing keys and webcam events on a company server. What is the indicator of compr...
Malware AnalysisIndicators of CompromiseStatic AnalysisData Exfiltration
Question #89Incident Investigation and Analysis
Refer to the exhibit. What is occurring within the exhibit?
Malicious IFRAMEWeb Application SecurityHTML Code AnalysisClient-side Attacks
Question #90Identity and Access Management
While analyzing traffic from an API authentication request, an analyst identifies the header: "Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3OCIsIn...
JWTBearer TokensToken-based AuthenticationAPI Security
Question #91Incident Management and Response
A financial institution's incident response team is revising their playbook to specifically address incidents of wire-transfer fraud, which have become increasingly sophisticated....
Incident ResponseWire Transfer Fraud DetectionTransaction MonitoringForensic Accounting
Question #92Incident Response
A security analyst is investigating a whaling attack via cross-correlated events from SIEM, a detailed log of proxy sessions, and EDR logs. During the investigation, the analyst de...
Incident ResponseNIST SP 800-61ContainmentC&C Detection
Question #93Risk Management and Assessment
In a scenario where a large healthcare provider is revamping its cybersecurity strategy, it faces potential risks from sophisticated cyber threats like targeted ransomware, insider...
Risk AnalysisThreat ModelingHealthcare SecurityVulnerability Assessment
Question #94Endpoint Security
An employee abused PowerShell commands and script interpreters which lead to IOC triggers. An IOC event shows that a known malicious file ran which increased the likelihood of a su...
IOC IndicatorsMalware DetectionEndpoint SecurityIncident Response
Question #95Identity and Access Management
Which HTTP response code is associated with a request that requires more user information?
HTTP Status CodesAuthenticationWeb SecurityAccess Control
Question #96Application Security
When consuming APIs with security constraints like rate limits and timeouts, which combination of techniques must a security team implement to ensure API requests are processed eff...
Rate LimitingRequest ThrottlingRetry LogicAPI Monitoring
Question #97Incident Response
A security analyst reviews a playbook scenario that describes the steps to be taken in response to a ransomware attack targeting the organization. The scenario includes the identif...
Ransomware ResponseIncident Response ToolsEDR/Backup RecoveryContainment and Recovery
Question #98Network Programmability
Refer to the exhibit. Which data format is used?
JSONdata formatsAPI serializationdata interchange
Question #99Incident Response and Management
An IT security team detects an unauthorized access to their development environment on few QA team machines. According to the incident response workflow, which sequence of actions...
Incident ResponseIR ProceduresThreat ContainmentSecurity Operations
Question #100Threat Analysis and Detection
Refer to the exhibit. A system administrator has recently submitted a file for malware analysis to Cisco Secure Malware Analytics. According to this Cisco Secure Malware Analytics...
Malware AnalysisIndicators of CompromiseCisco Secure Malware AnalyticsThreat Intelligence

PreviousPage 2 of 3Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.