Pass4sure Cisco 646-562 Exam
Advanced Security for Account Managers (ASAM) : 646-562 Exam
Exam Number/Code: 646-562
Exam Name: Advanced Security for Account Managers (ASAM)
Exam : Cisco 646-562
Title :
Cisco® Security for Account
Managers (ASAM)
Update : Demo
1. You are meeting with an enterprise customer that has a multivendor network. Which Cisco Security
product should you position with this customer?
A. CiscoWorks VPN/Security Management Solution Basic
B. Cisco Security MARS
C. Cisco Router and Security Device Manager
D. Cisco PIX Device Manager
Answer: B
2. Which security management offering helps customers to readily and accurately identify, manage, and mitigate network attacks and to maintain network security compliance?
A. Cisco Security Manager
B. Cisco Network Assistant
C. Cisco NAC
D. Cisco Security MARS E. Cisco Security Agent F. Cisco Trust Agent Answer: D
3. In terms of the network lifecycle, what should you consider when evaluating the TCO of a security solution?
A. planning and design phases
B. implementation and operation phases
C. the entire network lifecycle
D. operation phase E. planning phase Answer: C
4. You are meeting with a customer who is concerned about ongoing network threats and vulnerabilities within the corporate network. How should you position the Cisco SDN with this customer?
A. The Cisco SelfDefending Network is the Cisco solution that protects the network of an organization.
The SDN strategy offers security products that will defend your network before attacks occur. SDN
products use industryleading technologies, which will enable your company to stay up to date on network security.
B. Cisco NAC is a complete, endtoend security solution that enables endpoints to be admitted to the
network based on their adherence to security policy as enforced by network devices, such as routers and switches. NAC is a solution that will protect business processes and the network of your organization by identifying, preventing, and adapting to security threats.
C. Cisco SDN solutions are adaptive, allowing for innovative behavioral methods to be deployed in order
to automatically recognize new types of threats as they arise. Mutual awareness can exist among and between security services and network intelligence, thus increasing security effectiveness and enabling a much more proactive response to new types of threats.
D. Most network threats and vulnerabilities arise from inefficient access control. Cisco VLAN solutions are
a part of the SelfDefending Network strategy, and can segment users into different workgroups or virtual LANs based on whom they are, not where they are. In turn, VLAN solutions prohibit hackers from gaining network access, and will dramatically lessen the pains you are experiencing with network threats and vulnerabilities.
Answer: C
5. Which Cisco Security Solution helps organizations to effectively avoid disruptions that are caused by worms or viruses, while also helping to control the costs of deploying and maintaining a secure network?
A. CiscoWorks VPN/Security Management Solution
B. Cisco Security Monitoring, Analysis and Response System
C. Theft of Information Solution D. Outbreak Prevention Solution Answer: D
6. How does the Cisco Security Agent work in conjuction with thirdparty antivirus software?
A. Cisco Security Agent checks the status of thirdparty antivirus software and makes a decision about
compliance.
B. Cisco Security Agent checks the status of thirdparty antivirus software and forwards it to the thirdparty antivirus policy server.
C. Cisco Security Agent checks the status of thirdparty antivirus software and forwards it to the policy server (ACS).
D. Cisco Security Agent enhances the security by sandboxing the applications and the system in addition
to the antivirus protection offered by the antivirus software.
E. Cisco Security Agent makes the antivirus software superfluous. Answer: D
7. Which security pain point can be resolved by each of these security products: Cisco ASA 5500 Series Adaptive Security Appliances, Cisco PIX Firewall 500 Series, Cisco Security Agent, and the Cisco Guard DDoS Mitigation Appliances?
A. business disruption from an Internet attack, such as viruses, worms, and/or hackers
B. difficulty enforcing compliance to security policies that govern desktop antivirus software
C. extension of the investment in an existing Cisco router by making it a fully secure WAN device
D. remote employees that require access to the corporate network
E. firewall functionality that scales from the branch office to the network core
Answer: A
8. Which three technologies allow the Cisco SDN to adapt to new threats as they arise? (Choose three.)
A. antivirus
B. application awareness
C. behavior recognition
D. firewalling
E. network control
F. VPN Answer: BCE
9. Why do end users need to be aware of the security policy?
A. Some security decisions are usually in their hands.
B. They should understand the probability of every risk. C. They need to be aware of every threat.
D. They should avoid responsibility for their actions.
Answer: A
10. Which three elements should an enterprise security policy specify? (Choose three.) A. risks and how to manage the risks
B. network inventory
C. user roles and responsibilities
D. software versions of the security products
E. contingency plan in case of compromise F. funds allocated to security projects Answer: ACE
11. Which business enabler provides a defense against damages and losses (such as financial, legal, commercial, image, branding, property, and people), which directly affect the ability of a company to do business?
A. government regulations
B. protection
C. ubiquitous access
D. contribution to profitability
Answer: B
12. Which two factors should be considered when calculating the cost of downtime? (Choose two.)
A. number of compromised servers
B. server downtime (in hours)
C. time (in hours) to rebuild servers
D. average revenue per hour
Answer: BD
13. To successfully sell security products, you must identify customer pain points, and then map those pain points to Cisco Security Solutions that solve them through successful threat mitigation. What are
three Cisco Security Solutions that directly relate to common security pain points that are identified in the annual CSI/FBI Computer Crime and Security Survey? (Choose three.)
A. Application Abuse Prevention Solution
B. DDoS Attack Solution
C. AntiSpyware Solution
D. Internal Threat Prevention Solution
E. Outbreak Prevention Solution F. Theft of Information Solution Answer: BEF
14. Which three of these are key elements of the Adaptive Threat Defense? (Choose three.)
A. multilayer intelligence
B. a blend of IP and security technologies
C. active management and mitigation D. dynamic adjustment of risk ratings E. feature consistency
F. intrusion detection system
Answer: ACD
15. Which statement best describes the Cisco SDN strategy?
A. The SDN strategy is to protect standalone products at the physical perimeter of a network, where the
LAN meets the WAN and corporate networks connect to the Internet.
B. The SDN strategy is to protect business processes and the network of an organization by identifying, preventing, and adapting to security threats and by including integrated, collaborative, and adaptive
security elements throughout the network.
C. The SDN enables network elements to communicate with one another in a collaborative manner, for example, an IDS instructing an ACL to deny access to a connection.
D. The SDN is the most widely deployed networkadmissionscontrol strategy, supporting organizations of
all sizes as well as multiple access methods, including wireless, remote, LAN, WAN, and guest access. Answer: B
16. In which two ways does application security protect against threats being introduced from within webenabled applications? (Choose two.)
A. Application security examines messagelevel information to ascertain the “intent” of the applications.
B. Application security provides controls that limit the transmission of confidential data or policies.
C. Application security intelligently analyzes network payload.
D. Application security stops attacks as far as possible from their intended destination and the core of the network.
E. Application security provides sophisticated auditing, control, and correlation capabilities to control and
protect any networked element. Answer: AC
17. Which two Cisco security technologies can help organizations that have difficulty enforcing compliance to security policies that govern desktop antivirus software? (Choose two.)
A. Cisco ASA 5500 Series Adaptive Security Appliances
B. Cisco Integrated Services Routers
C. Cisco PIX Firewall 500 Series
D. Cisco Security Agent
E. NAC Appliance (Cisco Clean Access) F. Firewall Services Module
Answer: DE
18. Which principal characteristic of the Cisco SDN incorporates technologies that are inherent in the
secure operation of network devices, including control plane policing and CPU/memory thresholding?
A. collaboration
B. Cisco IOS software
C. integration
D. secure infrastructure
Answer: C
19. Which two factors should be considered when calculating the cost of recovery? (Choose two.)
A. number of compromised servers
B. server downtime (in hours)
C. time (in hours) to rebuild servers D. average revenue per hour Answer: AC
20. How do you calculate risk quantitatively for SLE?
A. single loss expectancy divided by the annualized rate of occurrence
B. exposure factor multiplied by the asset value
C. cost of recovery multiplied by the number of compromised servers D. average revenue per hour divided by the hourly server downtime Answer: B
21. What are three benefits of the Cisco SDN that will be recognized by business decision makers?
(Choose three.)
A. lowers TCO by using the existing infrastructure
B. helps to meet regulatory requirements
C. protects against insecure or contaminated devices
D. helps to manage IT and operational risk
E. effectively enforces security and confidentiality policies companywide
F. provides network availability and reliability
Answer: ABD
22. When building a security policy for an organization, which of these steps should you take first?
A. risk assessment B. risk management C. threat avoidance D. enduser training
E. threat identification
Answer: E
23. Which three features explain how the Cisco SelfDefending Network strategy helps control and contain security threats? (Choose three.)
A. reactive protection and containment of known and unknown threats
B. distributed mitigation of infections and outbreaks
C. tight security at higher operational costs
D. manageable patching and updating due to enforced endpoint compliance
E. defense in depth
F. single point of failure
Answer: BDE
24. Which Cisco IOS feature facilitates dynamic IPsec tunnels between spoke (branch) sites?
A. Cisco Easy VPN B. V3PN
C. DMVPN
D. Cisco WebVPN Answer: C
25. Which statement best describes the functionality of the Cisco Security Agent? A. It enforces authorization policies and privileges.
B. It isolates noncompliant machines.
C. It prevents malicious behavior before damage can occur. D. It performs vulnerability testing and threat remediation. Answer: C
26. Network containment and control provides the ability to layer sophisticated auditing, control, and correlation capabilities to protect any networked element across any firewall, VPN, intrusion detection mechanism, or other technology. How does this enable proactive response to threats?
A. It distributes mitigation points throughout key securityenforcement points in the network.
B. It examines messagelevel information to ascertain the “intent” of the applications. C. It provides controls that limit the transmission of confidential data or policies.
D. It aggregates and correlates security information. Answer: D
27. What is a benefit of Cisco IOS IPS?
A. ensures security compliance before allowing network access
B. protects investments by using the existing network infrastructure
C. contains a networkbased tool for vulnerability and threat remediation
D. protects against spyware and adware
Answer: B
28. In which two ways does a Cisco solution directly reduce the cost of operation? (Choose two.)
A. by minimizing the number of vendors that supply security
B. by reducing overall management complexity
C. by improving competitive advantage
D. by avoiding information theft
E. by addressing security pain points
Answer: AB
29. In which two ways does a Cisco SDN provide outbreak prevention? (Choose two.)
A. efficiently mitigates DDoS attack damage
B. enforces security compliance for all devices that access network resources
C. identifies, quarantines, and remediates improperly protected devices
D. grants and enforces access rights and privileges to trusted, authenticated users
Answer: BC
30. Which government regulation was implemented to promote world financial stability by coordinating definitions of capital and risk assessment across countries?
A. BS 7799/ISO 17799
B. SOX C. HIPAA
D. Basel II
E. USA PATRIOT Act
Answer: D
“Advanced Security for Account Managers (ASAM)”, also known as 646-562 exam, is a Cisco certification.
Preparing for the 646-562 exam? Searching 646-562 Test Questions, 646-562 Practice Exam, 646-562 Dumps?
With the complete collection of questions and answers, Pass4sure has assembled to take you through 60 Q&As to your 646-562 Exam preparation. In the 646-562 exam resources, you will cover every field and category in Others helping to ready you for your successful Cisco Certification.
Questions and Answers : 60 Q&As
Updated: April 26th , 2008
Market Price: $125.99
Free down:Pass4sure Cisco 646-562 v2.83
Free down:Testking 646-562
password:www.dynamips.cn
| Cisco Braindumps Free Downloads |
|
Type |
Exam Bible | New Questions & Answers |
Latest Updated |
Download link |
 |
All Cisco 's Exam Pack |
589 |
1 days ago | Download |
[...] download: testking 646-562 Free download: pass4sure 646-562 Free download: actualtest 646-562 Free download: testinside [...]