Cisco 500-275 - Securing Cisco Networks with Sourcefire FireAMP Endpoints Exam
Page: 2 / 10
Total 50 questions
Question #6 (Topic: )
Which feature allows retrospective detection?
A. Total Recall
B. Cloud Recall
C. Recall Alert
D. Recall Analysis
Answer: B
Question #7 (Topic: )
Which statement describes an advantage of cloud-based detection?
A. Limited customization allows for faster detection.
B. Fewer resources are required on the endpoint.
C. Sandboxing reduces the overall management overhead of the system.
D. High-speed analytical engines on the endpoint limit the amount of work the cloud must perform.
Answer: B
Question #8 (Topic: )
Which option is a detection technology that is used by FireAMP?
A. fuzzy matching
B. Norton AntiVirus
C. network scans
D. Exterminator
Answer: A
Question #9 (Topic: )
File information is sent to the Sourcefire Collective Security Intelligence Cloud using which
format?
format?
A. MD5
B. SHA-1
C. filenames
D. SHA-256
Answer: D
Question #10 (Topic: )
When discussing the FireAMP product, which term does the acronym DFC represent?
A. It means Detected Forensic Cause.
B. It means Duplicate File Contents.
C. It means Device Flow Correlation.
D. It is not an acronym that is associated with the FireAMP product.
Answer: C
