1. Home
  2. Cisco
  3. 200-201

Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS)

Exam Details

  • Exam Code
    :200-201
  • Exam Name
    :Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS)
  • Certification
    :CyberOps Associate
  • Vendor
    :Cisco
  • Total Questions
    :406 Q&As
  • Last Updated
    :

Cisco CyberOps Associate 200-201 Questions & Answers

  • Question 111:

    Which category relates to improper use or disclosure of PII data?

    A. legal

    B. compliance

    C. regulated

    D. contractual

  • Question 112:

    Which tool provides a full packet capture from network traffic?

    A. Nagios

    B. CAINE

    C. Hydra

    D. Wireshark

  • Question 113:

    While viewing packet capture data, an analyst sees that one IP is sending and receiving traffic for multiple devices by modifying the IP header. Which technology makes this behavior possible?

    A. encapsulation

    B. TOR

    C. tunneling

    D. NAT

  • Question 114:

    A user received a malicious attachment but did not run it. Which category classifies the intrusion?

    A. weaponization

    B. reconnaissance

    C. installation

    D. delivery

  • Question 115:

    One of the objectives of information security is to protect the CIA of information and systems. What does CIA mean in this context?

    A. confidentiality, identity, and authorization

    B. confidentiality, integrity, and authorization

    C. confidentiality, identity, and availability D. confidentiality, integrity, and availability

  • Question 116:

    An engineer needs to configure network systems to detect command and control communications by decrypting ingress and egress perimeter traffic and allowing network security devices to detect malicious outbound communications. Which technology should be used to accomplish the task?

    A. digital certificates

    B. static IP addresses

    C. signatures

    D. cipher suite

  • Question 117:

    What is a difference between an inline and a tap mode traffic monitoring?

    A. Inline monitors traffic without examining other devices, while a tap mode tags traffic and examines the data from monitoring devices.

    B. Tap mode monitors traffic direction, while inline mode keeps packet data as it passes through the monitoring devices.

    C. Tap mode monitors packets and their content with the highest speed, while the inline mode draws a packet path for analysis.

    D. Inline mode monitors traffic path, examining any traffic at a wire speed, while a tap mode monitors traffic as it crosses the network.

  • Question 118:

    Which tool gives the ability to see session data in real time?

    A. tcpdstat

    B. trafdump

    C. tcptrace

    D. trafshow

  • Question 119:

    Which type of evidence supports a theory or an assumption that results from initial evidence?

    A. probabilistic

    B. indirect

    C. best

    D. corroborative

  • Question 120:

    Which of these describes SOC metrics in relation to security incidents?

    A. time it takes to detect the incident

    B. time it takes to assess the risks of the incident

    C. probability of outage caused by the incident

    D. probability of compromise and impact caused by the incident

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 200-201 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.