1. Home
  2. Cisco
  3. 350-701

Cisco 350-701 Online Practice Questions and Exam Preparation

350-701 Exam Details

  • Exam Code
    :350-701
  • Exam Name
    :Implementing and Operating Cisco Security Core Technologies (SCOR)
  • Certification
    :CCIE Security
  • Vendor
    :Cisco
  • Total Questions
    :784 Q&As
  • Last Updated
    :May 30, 2026

Cisco 350-701 Online Questions & Answers

  • Question 221:

    Which solution operates as a cloud-native CASB?

    A. Cisco Stealthwatch Cloud
    B. Cisco Umbrella
    C. Cisco pxGrid
    D. Cisco CloudLock

  • Question 222:

    An engineer is configuring IPsec VPN and needs an authentication protocol that is reliable and supports ACK and sequence. Which protocol accomplishes this goal?

    A. AES-192
    B. IKEv1
    C. AES-256
    D. ESP

  • Question 223:

    In which cloud services model is the tenant responsible for virtual machine OS patching?

    A. IaaS
    B. UCaaS
    C. PaaS
    D. SaaS

  • Question 224:

    An engineer has enabled LDAP accept queries on a listener. Malicious actors must be prevented from quickly identifying all valid recipients. What must be done on the Cisco ESA to accomplish this goal?

    A. Configure incoming content filters
    B. Use Bounce Verification
    C. Configure Directory Harvest Attack Prevention
    D. Bypass LDAP access queries in the recipient access table

  • Question 225:

    An engineer needs behavioral analysis to detect malicious activity on the hosts, and is configuring the organization's public cloud to send telemetry using the cloud provider's mechanisms to a security device. Which mechanism should the engineer configure to accomplish this goal?

    A. mirror port
    B. sFlow
    C. NetFlow
    D. VPC flow logs

  • Question 226:

    Which policy is used to capture host information on the Cisco Firepower Next Generation Intrusion Prevention System?

    A. Correlation
    B. Intrusion
    C. Access Control
    D. Network Discovery

  • Question 227:

    Which Cisco AMP feature allows an engineer to look back to trace past activities, such as file and process activity on an endpoint?

    A. endpoint isolation
    B. advanced search
    C. advanced investigation
    D. retrospective security

  • Question 228:

    Which Cisco Firewall solution requires zone definition?

    A. CBAC
    B. Cisco AMP
    C. ZBFW
    D. Cisco ASA

  • Question 229:

    Which two capabilities does an MDM provide? (Choose two.)

    A. delivery of network malware reports to an inbox in a schedule
    B. unified management of mobile devices, Macs, and PCs from a centralized dashboard
    C. enforcement of device security policies from a centralized dashboard
    D. manual identification and classification of client devices
    E. unified management of Android and Apple devices from a centralized dashboard

  • Question 230:

    A network administrator received a critical message alert from a Cisco Secure Web Appliance stating that the log partition is at 107% capacity. How does a Cisco Secure Web Appliance respond when its logging partition is full?

    A. It overwrites the oldest log files.
    B. It suspends logging and reporting functions.
    C. It deletes logs older than a configurable age.
    D. It archives older logs in a compressed file to free space.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.