Which two features of Cisco Email Security can protect your organization against email threats? (Choose two)
Correct Answer: B,D
Explanation : Protect sensitive content in outgoing emails with Data Loss Prevention (DLP) and easy-to-use email encryption, all in one solution. Cisco Email Security appliance can now handle incoming mail connections and incoming messages from specific geolocations and perform appropriate actions on them, for example: - Prevent email threats coming from specific geographic regions. - Allow or disallow emails coming from specific geographic regions. Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-0/user_guide_fs/ b_ESA_Admin_Guide_11_0/b_ESA_Admin_Guide_chapter_00.html Protect sensitive content in outgoing emails with Data Loss Prevention (DLP) and easy-to-use email encryption, all in one solution. Cisco Email Security appliance can now handle incoming mail connections and incoming messages from specific geolocations and perform appropriate actions on them, for example: - Prevent email threats coming from specific geographic regions. - Allow or disallow emails coming from specific geographic regions. Reference: Explanation : Protect sensitive content in outgoing emails with Data Loss Prevention (DLP) and easy-to-use email encryption, all in one solution. Cisco Email Security appliance can now handle incoming mail connections and incoming messages from specific geolocations and perform appropriate actions on them, for example: - Prevent email threats coming from specific geographic regions. - Allow or disallow emails coming from specific geographic regions. Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-0/user_guide_fs/ b_ESA_Admin_Guide_11_0/b_ESA_Admin_Guide_chapter_00.html
Question 257
What is the term for having information about threats and threat actors that helps mitigate harmful events that would otherwise compromise networks or systems?
Correct Answer: D
Threat intelligence is the term for having information about threats and threat actors that helps mitigate harmful events that would otherwise compromise networks or systems. Threat intelligence is the result of collecting, analyzing, and contextualizing data from various sources, such as network traffic, logs, feeds, reports, etc. Threat intelligence provides insights into the tactics, techniques, and procedures (TTPs) of adversaries, as well as their motivations, intentions, and capabilities. Threat intelligence can help organizations to detect, prevent, and respond to cyberattacks, as well as to improve their security posture and resilience12. The other options are not correct, because they are not terms for having information about threats and threat actors. Trusted automated exchange is a concept that refers to the sharing of threat intelligence among trusted entities in a timely and secure manner3. Indicators of Compromise (IoCs) are pieces of forensic data, such as IP addresses, domains, hashes, etc., that indicate a potential intrusion or compromise of a system or network. The Exploit Database is a public repository of exploits and vulnerable software, maintained by Offensive Security. References: * 1: What is Cyber Threat Intelligence? - Cisco * 2: Cisco Talos Intelligence Group - Comprehensive Threat Intelligence * 3: Trusted Automated Exchange of Intelligence Information (TAXII) Version 2.0 * [4]: What Are Indicators of Compromise (IOCs)? - Cisco * [5]: The Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers
Question 258
Which two capabilities of Integration APIs are utilized with Cisco DNA center? (Choose two)
Correct Answer: D,E
Question 259
What does the Cloudlock Apps Firewall do to mitigate security concerns from an application perspective?
Correct Answer: C
Question 260
What is a benefit of performing device compliance?
