350-701 Question #493: Real Exam Question with Answer & Explanation

Question

Which function is included when Cisco AMP is added to web security?

Options

• Amultifactor, authentication-based user identity
• Bdetailed analytics of the unknown file's behavior
• Cphishing detection on emails
• Dthreat prevention on an infected endpoint

Explanation

When Cisco AMP (Advanced Malware Protection) is integrated with web security, it provides detailed analytics of unknown files, allowing for deep inspection of their behavior and potential threats.

Common mistakes.

• A. Multifactor authentication is related to user identity and access management, not the malware detection and analysis capabilities of Cisco AMP.
• C. While web security solutions can aid in preventing access to phishing sites, AMP itself is focused on malware detection and analysis, not primarily on phishing detection within emails, which is typically handled by email security solutions.
• D. Cisco AMP does provide threat prevention, but its strength, especially when integrated with web security, is proactive analysis of unknown files before they can infect an endpoint, making detailed behavioral analytics a more characteristic function than merely preventing threats on an already infected endpoint.

Concept tested. Cisco AMP capabilities, malware analysis

Reference. https://www.cisco.com/c/en/us/products/collateral/security/web-security-appliance-wsa/datasheet-c78-735954.html

No community discussion yet for this question.