350-701 · Question #493
Which function is included when Cisco AMP is added to web security?
The correct answer is B. detailed analytics of the unknown file's behavior. When Cisco AMP (Advanced Malware Protection) is integrated with web security, it provides detailed analytics of unknown files, allowing for deep inspection of their behavior and potential threats.
Question
Which function is included when Cisco AMP is added to web security?
Options
- Amultifactor, authentication-based user identity
- Bdetailed analytics of the unknown file's behavior
- Cphishing detection on emails
- Dthreat prevention on an infected endpoint
How the community answered
(44 responses)- A2% (1)
- B89% (39)
- C7% (3)
- D2% (1)
Why each option
When Cisco AMP (Advanced Malware Protection) is integrated with web security, it provides detailed analytics of unknown files, allowing for deep inspection of their behavior and potential threats.
Multifactor authentication is related to user identity and access management, not the malware detection and analysis capabilities of Cisco AMP.
Cisco AMP's core functionality includes sandboxing and behavioral analysis of unknown files, even after initial inspection, to detect advanced threats that traditional signature-based methods might miss, providing detailed insights into their malicious activities.
While web security solutions can aid in preventing access to phishing sites, AMP itself is focused on malware detection and analysis, not primarily on phishing detection within emails, which is typically handled by email security solutions.
Cisco AMP does provide threat prevention, but its strength, especially when integrated with web security, is proactive analysis of unknown files before they can infect an endpoint, making detailed behavioral analytics a more characteristic function than merely preventing threats on an already infected endpoint.
Concept tested: Cisco AMP capabilities, malware analysis
Source: https://www.cisco.com/c/en/us/products/collateral/security/web-security-appliance-wsa/datasheet-c78-735954.html
Topics
Community Discussion
No community discussion yet for this question.