700-765 · Question #17
700-765 Question #17: Real Exam Question with Answer & Explanation
The correct answer is B: Receive notifications about any unplanned changes to security policies and objects. Cisco Defense Orchestrator (CDO) is a cloud-based security management platform that provides change notifications, pre-deployment policy modeling, and flexible deployment across virtual and physical environments.
Question
Options
- AProviding retrospective security to protect against malware
- BReceive notifications about any unplanned changes to security policies and objects
- CPlan and model security changes before deploying them across the cloud
- DIdentifying anomalous traffic in customer's network
- EAbility to deploy changes across virtual environments in real time or offline
- FTracking suspicious files through the network
Explanation
Cisco Defense Orchestrator (CDO) is a cloud-based security management platform that provides change notifications, pre-deployment policy modeling, and flexible deployment across virtual and physical environments.
Common mistakes.
- A. Retrospective security for malware protection is a feature of Cisco Secure Endpoint (formerly AMP for Endpoints), which analyzes file behavior after execution, not a CDO capability.
- D. Identifying anomalous traffic is a function of Cisco Secure Network Analytics (formerly Stealthwatch), which performs flow-based behavioral analysis, not CDO.
- F. Tracking suspicious files through the network is a capability of Cisco Secure Endpoint and the AMP ecosystem, not CDO.
Concept tested. Cisco Defense Orchestrator core management features
Reference. https://www.cisco.com/c/en/us/products/security/defense-orchestrator/index.html
Topics
Community Discussion
No community discussion yet for this question.