Exam Name: | Understanding Cisco Cybersecurity Operations Fundamentals (200-201 CBROPS) | ||
Exam Code: | 200-201 Dumps | ||
Vendor: | Cisco | Certification: | CyberOps Associate |
Questions: | 311 Q&A's | Shared By: | amalia |
Drag and drop the definition from the left onto the phase on the right to classify intrusion events according to the Cyber Kill Chain model.
A security engineer deploys an enterprise-wide host/endpoint technology for all of the company's corporate PCs. Management requests the engineer to block a selected set of applications on all PCs.
Which technology should be used to accomplish this task?
Refer to the exhibit.
A workstation downloads a malicious docx file from the Internet and a copy is sent to FTDv. The FTDv sends the file hash to FMC and the tile event is recorded what would have occurred with stronger data visibility.