• Home
  • Articles
  • [Aug-2021] CyberOps Professional 350-201 Exam Practice Dumps [Q57-Q75]

[Aug-2021] CyberOps Professional 350-201 Exam Practice Dumps [Q57-Q75]

Share

[Aug-2021] CyberOps Professional 350-201 Exam Practice Dumps

2021 350-201 Premium Files Test pdf - Free Dumps Collection

NEW QUESTION 57
Drag and drop the phases to evaluate the security posture of an asset from the left onto the activity that happens during the phases on the right.

Answer:

Explanation:

 

NEW QUESTION 58
An engineer receives a report that indicates a possible incident of a malicious insider sending company information to outside parties. What is the first action the engineer must take to determine whether an incident has occurred?

  • A. Analyze environmental threats and causes
  • B. Inform the product security incident response team to investigate further
  • C. Inform the computer security incident response team to investigate further
  • D. Analyze the precursors and indicators

Answer: D

 

NEW QUESTION 59
A security architect is working in a processing center and must implement a DLP solution to detect and prevent any type of copy and paste attempts of sensitive data within unapproved applications and removable devices. Which technical architecture must be used?

  • A. DLP for removable data
  • B. DLP for data in motion
  • C. DLP for data in use
  • D. DLP for data at rest

Answer: C

 

NEW QUESTION 60
How does Wireshark decrypt TLS network traffic?

  • A. using an RSA public key
  • B. by defining a user-specified decode-as
  • C. by observing DH key exchange
  • D. with a key log file using per-session secrets

Answer: D

Explanation:
Explanation/Reference: https://wiki.wireshark.org/TLS

 

NEW QUESTION 61
Refer to the exhibit. A threat actor behind a single computer exploited a cloud-based application by sending multiple concurrent API requests. These requests made the application unresponsive. Which solution protects the application from being overloaded and ensures more equitable application access across the end-user community?

  • A. Reduce the amount of data that can be fetched from the total pool of active clients that call the API
  • B. Limit the number of API calls that a single client is allowed to make
  • C. Add restrictions on the edge router on how often a single client can access the API
  • D. Increase the application cache of the total pool of active clients that call the API

Answer: B

 

NEW QUESTION 62
Drag and drop the threat from the left onto the scenario that introduces the threat on the right. Not all options are used.

Answer:

Explanation:

 

NEW QUESTION 63
Refer to the exhibit.

An engineer notices a significant anomaly in the traffic in one of the host groups in Cisco Secure Network Analytics (Stealthwatch) and must analyze the top data transmissions. Which tool accomplishes this task?

  • A. Top Conversations
  • B. Top Hosts
  • C. Top Peers
  • D. Top Ports

Answer: B

 

NEW QUESTION 64
An engineer is investigating several cases of increased incoming spam emails and suspicious emails from the HR and service departments. While checking the event sources, the website monitoring tool showed several web scraping alerts overnight. Which type of compromise is indicated?

  • A. social engineering
  • B. phishing
  • C. dumpster diving
  • D. privilege escalation

Answer: A

 

NEW QUESTION 65
Employees report computer system crashes within the same week. An analyst is investigating one of the computers that crashed and discovers multiple shortcuts in the system's startup folder. It appears that the shortcuts redirect users to malicious URLs. What is the next step the engineer should take to investigate this case?

  • A. Check the audit logs
  • B. Identify affected systems
  • C. Remove the shortcut files
  • D. Investigate the malicious URLs

Answer: B

 

NEW QUESTION 66
A European-based advertisement company collects tracking information from partner websites and stores it on a local server to provide tailored ads. Which standard must the company follow to safeguard the resting data?

  • A. HIPAA
  • B. PCI-DSS
  • C. GDPR
  • D. Sarbanes-Oxley

Answer: C

 

NEW QUESTION 67
An engineer has created a bash script to automate a complicated process. During script execution, this error occurs: permission denied. Which command must be added to execute this script?

  • A. chmod +x ex.sh
  • B. source ex.sh
  • C. chroot ex.sh
  • D. sh ex.sh

Answer: A

 

NEW QUESTION 68
What is a benefit of key risk indicators?

  • A. improved mitigation techniques for unknown threats
  • B. improved visibility on quantifiable information
  • C. clear perspective into the risk position of an organization
  • D. clear procedures and processes for organizational risk

Answer: A

 

NEW QUESTION 69
Refer to the exhibit.

Where does it signify that a page will be stopped from loading when a scripting attack is detected?

  • A. x-content-type-options
  • B. x-test-debug
  • C. x-xss-protection
  • D. x-frame-options

Answer: C

 

NEW QUESTION 70
An employee abused PowerShell commands and script interpreters, which lead to an indicator of compromise (IOC) trigger. The IOC event shows that a known malicious file has been executed, and there is an increased likelihood of a breach. Which indicator generated this IOC event?

  • A. ConnectToSuspiciousDomain.ioc
  • B. W32 AccesschkUtility.ioc
  • C. Crossrider.ioc
  • D. ExecutedMalware.ioc

Answer: B

 

NEW QUESTION 71
According to GDPR, what should be done with data to ensure its confidentiality, integrity, and availability?

  • A. Conduct a data protection impact assessment
  • B. Perform a vulnerability assessment
  • C. Perform awareness testing
  • D. Conduct penetration testing

Answer: A

 

NEW QUESTION 72
Drag and drop the telemetry-related considerations from the left onto their cloud service models on the right.

Answer:

Explanation:

 

NEW QUESTION 73
An engineer has created a bash script to automate a complicated process. During script execution, this error occurs: permission denied. Which command must be added to execute this script?

  • A. chmod +x ex.sh
  • B. source ex.sh
  • C. chroot ex.sh
  • D. sh ex.sh

Answer: A

Explanation:
Explanation/Reference: https://www.redhat.com/sysadmin/exit-codes-demystified

 

NEW QUESTION 74
Refer to the exhibit.

An engineer is performing static analysis of a file received and reported by a user. Which risk is indicated in this STIX?

  • A. The file is redirecting users to a website that requests privilege escalations from the user.
  • B. The file is redirecting users to a website that harvests cookies and stored account information.
  • C. The file is redirecting users to a website that is determining users' geographic location.
  • D. The file is redirecting users to the website that is downloading ransomware to encrypt files.

Answer: C

 

NEW QUESTION 75
......

Get ready to pass the 350-201 Exam right now using our CyberOps Professional  Exam Package: https://www.2pass4sure.com/CyberOps-Professional/350-201-actual-exam-braindumps.html

A fully updated 2021 350-201 Exam Dumps exam guide from training expert 2Pass4sure: https://drive.google.com/open?id=1xwxLAH7dFwRTnUD_dZ5EoCqUG1IQtBN6

Related Articles

more
Cisco 350-201 Certification Practice Exam