cisco 500-651 online test

Security Architecture for Systems Engineer (SASE)

What students need to know about the 500-651 exam

  • Total 88 Questions & Answers

Question 1

What are three benefits that Cisco Umbrella brings to DNS-Layer Security? (Choose three.)

  • A. Helps provide breach mitigation
  • B. Blocks Domains/IPs associated with malware, phising, etc
  • C. Delivers cloud based recursive DNS
  • D. Provides profiling of devices
  • E. Logs all internet activity
  • F. Provides Sandboxing of malware
Answer:

B C E

Explanation:
ASAS Security Web and Email SE Module 2

Discussions

Question 2

Which product was covered in the Cisco Cloud App Security module?

  • A. Cisco NGFW
  • B. Cisco Defense Orchestrator
  • C. Cisco AMP
  • D. Cloud Cloudlock
Answer:

D

Discussions

Question 3

Which feature in the DNS security module provide on and off network DNS protection?

  • A. Umbrella
  • B. Layer-4 monitoring
  • C. Real-time sandboxing
  • D. Data Loss Prevention
Answer:

A

Discussions

Question 4

Which are three key features or benefits of DNS-layer security? (Choose three.)

  • A. Real-time sandboxing
  • B. Identify the internet infrastructure used for attacks
  • C. Uncover current & emergent threats
  • D. Protect any device on or off the network
  • E. Data Loss Prevention
  • F. Retrospective Analysis
Answer:

B C D

Discussions

Question 5

Which Cisco solution falls under cloud security?

  • A. Umbrella
  • B. Identity Services Engine
  • C. Firepower Threat Defense
  • D. Cisco Defense Orchestrator
Answer:

D

Explanation:
ASAS Cisco Cloud Security SE Module 3

Discussions

Question 6

What feature of Anti-Spam Defense determines the reputation of an e-mail?

  • A. IP addresses
  • B. Threat analysis
  • C. Context analysis
  • D. Encryption score
Answer:

C

Discussions

Question 7

Which are two key Cisco benefits of the web threat-centric solution? (Choose two.)

  • A. Data Loss Prevention with NGFW
  • B. Endpoint device profiling with ISE
  • C. E-mail encryption with CRES
  • D. Malware blocking with AMP
  • E. Rogue web application protection through CTA
Answer:

D E

Explanation:
ASAS Security Threat Centric Solutions - AM and SE Module 7

Discussions

Question 8

Which two options are attack vectors protected by Identity and Access Control? (Choose two.)

  • A. Backups
  • B. Mobile
  • C. Endpoints
  • D. Cloud apps
  • E. Voicemail
Answer:

B C

Discussions

Question 9

Which is a Cisco recommended driver for network security?

  • A. Offer a threat-foe used security solution
  • B. Provide automated impact assessment
  • C. Focus on point products
  • D. Assign central, role-based management
Answer:

A

Discussions

Question 10

Which is a component of Cisco's Web and E-mail Security Solution?

  • A. Device Profiling
  • B. Next Generation Intrusion Prevention System
  • C. Next Generation Firewall
  • D. DNS-Layer security
Answer:

D

Explanation:
ASAS Security Web and Email SE Module 2

Discussions
To page 2