350-201 Exam Details

  • Exam Code
    :350-201
  • Exam Name
    :Performing CyberOps Using Cisco Security Technologies (CBRCOR)
  • Certification
    :CyberOps Professional
  • Vendor
    :Cisco
  • Total Questions
    :139 Q&As
  • Last Updated
    :Jul 13, 2026

Cisco 350-201 Online Questions & Answers

  • Question 71:

    A security architect is working in a processing center and must implement a DLP solution to detect and prevent any type of copy and paste attempts of sensitive data within unapproved applications and removable devices. Which technical architecture must be used?

    A. DLP for data in motion
    B. DLP for removable data
    C. DLP for data in use
    D. DLP for data at rest

  • Question 72:

    An organization had several cyberattacks over the last 6 months and has tasked an engineer with looking for patterns or trends that will help the organization anticipate future attacks and mitigate them. Which data analytic technique should the engineer use to accomplish this task?

    A. diagnostic
    B. qualitative
    C. predictive
    D. statistical

  • Question 73:

    An engineer is analyzing a possible compromise that happened a week ago when the company? (Choose two.)

    A. firewall
    B. Wireshark
    C. autopsy
    D. SHA512
    E. IPS

  • Question 74:

    What is a benefit of key risk indicators?

    A. clear perspective into the risk position of an organization
    B. improved visibility on quantifiable information
    C. improved mitigation techniques for unknown threats
    D. clear procedures and processes for organizational risk

  • Question 75:

    An employee who often travels abroad logs in from a first-seen country during non-working hours. The SIEM tool generates an alert that the user is forwarding an increased amount of emails to an external mail domain and then logs out. The investigation concludes that the external domain belongs to a competitor.

    Which two behaviors triggered UEBA? (Choose two.)

    A. domain belongs to a competitor
    B. log in during non-working hours
    C. email forwarding to an external domain
    D. log in from a first-seen country
    E. increased number of sent mails

  • Question 76:

    DRAG DROP

    Drag and drop the type of attacks from the left onto the cyber kill chain stages at which the attacks are seen on the right.

    Select and Place:

  • Question 77:

    An engineer received an alert of a zero-day vulnerability affecting desktop phones through which an attacker sends a crafted packet to a device, resets the credentials, makes the device unavailable, and allows a default administrator account login.

    Which step should an engineer take after receiving this alert?

    A. Initiate a triage meeting to acknowledge the vulnerability and its potential impact
    B. Determine company usage of the affected products
    C. Search for a patch to install from the vendor
    D. Implement restrictions within the VoIP VLANS

  • Question 78:

    A European-based advertisement company collects tracking information from partner websites and stores it on a local server to provide tailored ads. Which standard must the company follow to safeguard the resting data?

    A. HIPAA
    B. PCI-DSS
    C. Sarbanes-Oxley
    D. GDPR

  • Question 79:

    Refer to the exhibit. Based on the detected vulnerabilities, what is the next recommended mitigation step?

    A. Evaluate service disruption and associated risk before prioritizing patches.
    B. Perform root cause analysis for all detected vulnerabilities.
    C. Remediate all vulnerabilities with descending CVSS score order.
    D. Temporarily shut down unnecessary services until patch deployment ends.

  • Question 80:

    What is the purpose of hardening systems?

    A. to securely configure machines to limit the attack surface
    B. to create the logic that triggers alerts when anomalies occur
    C. to identify vulnerabilities within an operating system
    D. to analyze attacks to identify threat actors and points of entry

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-201 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.