350-701 Exam Details

  • Exam Code
    :350-701
  • Exam Name
    :Implementing and Operating Cisco Security Core Technologies (SCOR)
  • Certification
    :CCIE Security
  • Vendor
    :Cisco
  • Total Questions
    :784 Q&As
  • Last Updated
    :Jul 10, 2026

Cisco 350-701 Online Questions & Answers

  • Question 771:

    An engineer needs to detect and quarantine a file named abc424400664 zip based on the MD5 signature of the file using the Outbreak Control list feature within Cisco Advanced Malware Protection (AMP) for Endpoints The configured detection method must work on files of unknown disposition Which Outbreak Control list must be configured to provide this?

    A. Blocked Application
    B. Simple Custom Detection
    C. Advanced Custom Detection
    D. Android Custom Detection

  • Question 772:

    How does Cisco Umbrella protect clients when they operate outside of the corporate network?

    A. by modifying the registry for DNS lookups
    B. by using Active Directory group policies to enforce Cisco Umbrella DNS servers
    C. by using the Cisco Umbrella roaming client
    D. by forcing DNS queries to the corporate name servers

  • Question 773:

    Which PKI enrollment method allows the user to separate authentication and enrollment actions and also provides an option to specify HTTP/TFTP commands to perform file retrieval from the server?

    A. url
    B. terminal
    C. profile
    D. selfsigned

  • Question 774:

    A security engineer must create a policy based on the reputation verdict of a file from a Cisco Secure Email Gateway. The file with an undetermined verdict must be dropped. Which action must the security engineer take to meet the requirement?

    A. Configure threshold settings for files with no score to be allowed.
    B. Set up a policy to automatically drop files with no reputation score.
    C. Implement a policy to disable file analysis.
    D. Create a policy to send a file to quarantine.

  • Question 775:

    What are two advantages of using Cisco Any connect over DMVPN? (Choose two)

    A. It provides spoke-to-spoke communications without traversing the hub
    B. It allows different routing protocols to work over the tunnel
    C. It allows customization of access policies based on user identity
    D. It allows multiple sites to connect to the data center
    E. It enables VPN access for individual users from their machines

  • Question 776:

    An organization is trying to improve their Defense in Depth by blocking malicious destinations prior to a connection being established. The solution must be able to block certain applications from being used within the network. Which product should be used to accomplish this goal?

    A. Cisco Firepower
    B. Cisco Umbrella
    C. ISE
    D. AMP

  • Question 777:

    What describes the function of the crypto isakmp key C1$c451090787 address 0.0.0.0 0.0.0.0 command when configuring an IPsec VPN tunnel on a Cisco IOS router?

    A. It allows connections from any hosts using the defined preshared key.
    B. It defines that all data is going to be encrypted via the VPN.
    C. It configures the IP address and subnet mask of the VPN server.
    D. It drops spoofed VPN traffic using 0.0.0.0 as the source or destination IP address.

  • Question 778:

    Which type of encryption uses a public key and private key?

    A. Asymmetric
    B. Symmetric
    C. Linear
    D. Nonlinear

  • Question 779:

    Which group within Cisco writes and publishes a weekly newsletter to help cybersecurity professionals remain aware of the ongoing and most prevalent threats?

    A. PSIRT
    B. Talos
    C. CSIRT
    D. DEVNET

  • Question 780:

    An engineer used a posture check on a Microsoft Windows endpoint and discovered that the MS17-010 patch was not installed, which left the endpoint vulnerable to WannaCry ransomware. Which two solutions mitigate the risk of this ransom ware infection? (Choose two)

    A. Configure a posture policy in Cisco Identity Services Engine to install the MS17-010 patch before allowing access on the network.
    B. Set up a profiling policy in Cisco Identity Service Engine to check and endpoint patch level before allowing access on the network.
    C. Configure a posture policy in Cisco Identity Services Engine to check that an endpoint patch level is met before allowing access on the network.
    D. Configure endpoint firewall policies to stop the exploit traffic from being allowed to run and replicate throughout the network.
    E. Set up a well-defined endpoint patching strategy to ensure that endpoints have critical vulnerabilities patched in a timely fashion.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.