Deck 50: Cisco Security Architecture for System Engineers

A) Workloads
B) Data
C) Networks
D) IT
E) Applications
F) Email

A) Allows visibility into anonymous and encrypted communications
B) It enables greater threat intelligence with entity modeling
C) It enables safe email usage with event analytics
D) It enhances anonymity with URL filtering

A) Control Layer
B) Internet/Cloud
C) Data Center
D) Things
E) Access Points

A) Real-time sandboxing
B) Forensic investigation
C) Threat-based anomaly detection
D) Data Loss Prevention
E) Netflow monitoring
F) Malware clustering

A) AMP for Endpoints
B) Duo
C) Cisco Security Connector
D) pxGrid
E) Stealthwatch

A) Web
B) Cloud
C) Data Center
D) Email
E) Endpoints

A) Worktable
B) Workspace
C) Workloads
D) Workforce
E) Workflow

A) Live threat intelligence
B) Proxy and file inspection
C) URL filtering
D) Real-time sandboxing
E) Data analytics and monitoring

A) Telemetry, shared intelligence, and profiling sources
B) Context, telemetry and intelligence sources
C) Intelligence sources, telemetry, and shared intelligence
D) Context, telemetry, and profiling sources

A) File Retrospection and Trajectory
B) Dynamic Malware Analysis
C) Local Threat Intelligence
D) Automated Policy Management
E) Automatic Behavioral Authorization

A) Management
B) Automation
C) Segmentation
D) Analyzation

A) More users
B) More devices
C) More networks
D) More IT professionals
E) More vulnerabilities

A) File Reputation
B) Behavioral Indicators of Compromise
C) Global Threat Intelligence
D) Sandboxing File Analysis

A) global threat intelligence
B) security automation
C) advanced threat protection and rapid remediation
D) contextual awareness

A) identity-based and device-aware security
B) application visibility and control
C) device profiling
D) contextual awareness
E) security automation

A) Differentiated Mobile Access
B) Secure Layer 2 Network Access
C) Trusted Network Detection
D) Network Visibility Module

A) Reduced malicious file risk through additional segmentation.
B) Decreased network accessibility through multiple applications.
C) Decreased visibility and limited understand of security coverage.
D) Increased identity controls
E) Individual components pieced together to meet requirements.

A) 98.5%
B) 95.6%
C) 99.2%
D) 100%

A) Device profiling
B) Centralized policy management
C) Context-aware access
D) Platform exchange grid

A) Flexible AAA Options
B) Differentiated Mobile Access
C) High throughput maintained while still protecting domains against threats
D) Identity Service Engine

A) It analyzes the data from suspicious files to provide a new level of threat intelligence
B) It searches for potential threats based on identified activities and behaviors.
C) It determines the scope and cause of an outbreak and tracks suspicious files
D) It tracks file behavior across the network to see which devices it enters and exits

A) Retrospective security
B) Control of protocol-hopping apps that evade traditional firewalls
C) Scalable policy inheritance
D) Automated remediation APIs

A) Rebuild their security portfolios with new solutions
B) Complement threat-centric tactics with trust-centric methods
C) Expand their IT departments
D) Decrease internal access and reporting
E) Reinforce their threat-centric security tactics

A) Decreasing endpoint ecosystem
B) Increasing access points
C) Expanding complexity
D) Decreasing 3rd party applications
E) Growing ecosystem

A) user authentication
B) device profiling and onboarding
C) URL filtering & dynamic content analysis
D) intrusion prevention
E) user identity tracking

A) Anomaly modeling
B) Anomaly detection
C) Event classification
D) Trust modeling

A) Mobile
B) Cloud
C) Data center
D) Web
E) Endpoints

A) OT
B) Branches
C) IT
D) Fabric Level

A) access to multiple data layers
B) threats stopped from getting in and spreading
C) see and share malware details
D) access to Trojan downloader

A) Innovation vs. manufacturing
B) Hackers vs. safety
C) Malfunctions vs. output
D) Security vs. availability

A) Web
B) Cloud
C) Endpoints
D) Email
E) Mobile

A) VXLAN
B) Ingress VLAN
C) Security Group Tag
D) Access Control List

A) Per application VPN
B) Secure Layer 2 Network Access
C) Application Visibility & control
D) Identity Service Engine

A) Blocks threats in real time
B) Real-time threat information
C) 3rd party applications integrated through comprehensive APIs
D) Detection of threats communicated within 48 hours of occurrence

A) Mobile
B) Data Center
C) Cloud
D) Web
E) Email

A) Duo
B) Cisco Security Connector
C) Industrial Network Director
D) Identity Services Engine
E) Advanced Malware Protection

A) Reputation filtering
B) Malware scanning
C) Predictive intelligence
D) Breach mitigation
E) Off-network security
F) Recursive DNS

A) It enables secure web browsing with cognitive threat analytics
B) It enables point in time detection through a one-to-one engine
C) It increases the accuracy of threat detection with Big Data analytics
D) It increases the protection to systems with exact fingerprinting

A) Compliance regulations
B) Security system blackouts
C) High turnover of IT professionals
D) Limited resources
E) Lack of solution integration

A) Network Analytics
B) Behavioral Indication of Compromise
C) Remote Access VPN
D) File Retrospection and Trajectory
E) Mobile Access

A) Device trust
B) Remediation
C) Segmentation
D) Access

A) dynamic data analysis
B) intrusion analysis
C) dynamic URL filtering
D) reputation analytics
E) advanced analytics

A) Storage is moving from on-premises to cloud-based
B) Network traffic is growing at an exponential rate
C) Organizations need the ability to block high-risk websites
D) Businesses can't see or protect devices on their network

A) Web
B) Cloud
C) Voicemail
D) Data Center
E) Email

A) 50
B) 30
C) 10
D) 70

A) Provides SSL VPN
B) Supports pxGrid
C) Authenticates user identity for remote access
D) Automates policy creation for IT staff

A) NGFW
B) Network Analytics
C) Intrusion Analytics
D) Threat Analytics
E) Malware Protection
F) Threat Defense

A) Reduces throughput
B) Increases traffic latency
C) Detects and remediates threats faster
D) Identifies anomalous traffic
E) Prepares defenses
F) Reduces complexity

A) Netflow analytics
B) Forensic investigation
C) Advanced malware protection
D) FlowCollector

A) Seller competition
B) Overcrowded portfolios
C) Fragmented solutions
D) Unresponsive potential customers
E) Complexity of solution components

A) Email
B) Corporate priorities
C) IoT devices
D) IT departments
E) OT environments

A) IoT Security
B) Roaming Security
C) Advanced Threat
D) Cloud Security
E) Voice & Collaboration
F) Firewalls

A) Threat protection
B) Orchestration
C) Automation
D) Access
E) Visibility

A) cloud data security
B) intrusion prevention
C) advanced network security
D) cloud-delivered security
E) cloud security

A) Agents
B) MFA
C) Remote Access VPN
D) AMP for Endpoints