300-745 Exam Details

  • Exam Code
    :300-745
  • Exam Name
    :Designing Cisco Security Infrastructure (300-745 SDSI) v1.0
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :75 Q&As
  • Last Updated
    :Jul 09, 2026

Cisco 300-745 Online Questions & Answers

  • Question 1:

    A technology company recently onboarded a new customer in the medical space. The customer needs a solution to provide data integrity across remote sites.

    Which solution must be used to meet this requirement?

    A. hashing
    B. data masking
    C. preshared key
    D. authentication

  • Question 2:

    A global hotel chain is using Cisco ISE and Cisco switches to manage the network. The hotel company wants to enhance network security by segmenting users and endpoints.

    The company must ensure that devices within the same VLAN cannot communicate with each other. The goal is to prevent cross-communication without the use of dynamic access control lists.

    Which action must be taken using Cisco ISE to meet the requirement?

    A. Implement device posturing.
    B. Set up endpoint profiling.
    C. Enable identity groups.
    D. Configure TrustSec.

  • Question 3:

    An agricultural company wants to enhance the cybersecurity posture by implementing a defense-in-depth strategy to protect against polymorphic malware threats.

    Currently, the company's security infrastructure relies solely on a stateful traditional edge firewall that does not provide adequate protection against malware variants.

    Which technology must be added to the company's security architecture to achieve the goal?

    A. web application firewall
    B. physical security control
    C. network performance monitor
    D. heuristics-based IPS

  • Question 4:

    A software development company relies on GitHub for managing the source code and is committed to maintaining application security.

    The company must ensure that known software vulnerabilities are not introduced to the application.

    The company needs a capability within GitHub that can analyze semantic versioning and flag any software components that pose security risks.

    Which GitHub feature must be used?

    A. Depend-a-bot
    B. Sealed boxes
    C. GitHub Actions
    D. Artifact attestations

  • Question 5:

    Refer to the exhibit.

    In addition to SSL decryption, which firewall feature allows malware to be blocked?

    A. DLP
    B. SSL Offloading
    C. URL Filtering
    D. File Inspection

  • Question 6:

    A retail company is facing a series of cyberattacks targeting the web servers, which results in disruptions to the online services.

    Upon investigation, the security team identified that these attacks involved invalid HTTP request headers, which were used to exploit vulnerabilities in the web application.

    To safeguard the company websites against similar threats in the future, the security team must deploy a security solution specifically designed to detect and block such malicious web traffic.

    Which security product must be used to protect the websites from similar attacks?

    A. antivirus software
    B. traditional firewall
    C. web application firewall
    D. host-based firewall

  • Question 7:

    An oil and gas company recently faced a security breach when an employee's notepad, which contained critical login credentials, was stolen.

    The incident led to unauthorized access to a user account, which posed a significant risk to sensitive company data and operations.

    The company wants to adopt a security measure that enhances user account protection.

    Which action must be taken to prevent breaches like this from happening in the future?

    A. Implement MFA
    B. Implement single sign-on.
    C. Update the RADIUS server.
    D. Configure a password expiration policy.

  • Question 8:

    A company is seeing repeated password-spray attempts against its remote-access VPN. The business must keep the VPN available, but the security team wants to reduce the chance that a stolen password alone can be used to access the network.

    Which control should be added to the design?

    A. Increase the minimum password length for VPN users.
    B. Require Cisco Duo multifactor authentication for VPN logins.
    C. Disable split tunneling for all VPN users.
    D. Move VPN users to a different DHCP address pool.

  • Question 9:

    A financial company is focused on proactively protecting sensitive data stored on the devices.

    The company recognizes the potential risks associated with lost or stolen devices and they want a solution to ensure that if unauthorized user access the device, the data it contains is not accessible or misused.

    The solution includes implementing a strategy that renders data unreadable without user authentication.

    Which solution meets the requirement?

    A. Install Kensington Lock.
    B. Use a BIOS password.
    C. Implement data encryption on disk.
    D. Apply GPS tracking.

  • Question 10:

    An API-first project wants security review to begin before the service is implemented. The architects need to identify excessive data exposure, missing authentication definitions, and risky endpoints from the contract.

    Which artifact should be analyzed?

    A. OpenAPI specification
    B. Container image signature
    C. NetFlow export
    D. File reputation report

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-745 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.