350-401 · Question #546
Which technology uses network traffic telemetry, contextual information, and file reputation to provide insight into cyber threats?
The correct answer is A. threat defense. Threat Defense is the correct answer because it is a comprehensive security approach that combines network traffic telemetry (real-time data collection and analysis of network flows), contextual information (user, device, and application context), and file reputation (known good/
Question
Which technology uses network traffic telemetry, contextual information, and file reputation to provide insight into cyber threats?
Options
- Athreat defense
- Bsecurity services
- Csecurity intelligence
- Dsegmentation
How the community answered
(23 responses)- A91% (21)
- B4% (1)
- C4% (1)
Explanation
Threat Defense is the correct answer because it is a comprehensive security approach that combines network traffic telemetry (real-time data collection and analysis of network flows), contextual information (user, device, and application context), and file reputation (known good/bad file classifications) to deliver actionable insights into cyber threats - this is a core capability of platforms like Cisco's Firepower Threat Defense (FTD).
Why the distractors are wrong:
- B. Security services is a broad, generic term referring to any security-related offerings (firewalls, VPNs, etc.) and does not specifically describe this telemetry-driven threat insight capability.
- C. Security intelligence refers specifically to feeds of known malicious IP addresses, URLs, and domains used to block threats at the access layer - it is a component of threat defense, not the umbrella technology described.
- D. Segmentation is a network design strategy that divides networks into zones to limit lateral movement, and has no direct relationship to telemetry or file reputation analysis.
Memory tip: Think of Threat Defense as the "big picture" security technology - it defends by actively analyzing traffic + context + reputation together. If a question mentions all three of those data sources working in combination, think "Threat Defense" as the overarching solution.
Topics
Community Discussion
No community discussion yet for this question.