Home / Summaries / CCNP and CCIE Enterprise Core Official Cert Guide / cisco-stealthwatch-threat

Secure Network Access Control - Next-Generation Endpoint Security

19 important questions on Secure Network Access Control - Next-Generation Endpoint Security

What is Cisco Talos?

Cisco Talos is the Cisco Threat Intelligence Organization. An Elite team of security experts who are supported by sophisticated security systems.
Created from three security research teams:
1. IronPort Security Applications (SecApps)
2. The Sourcefire Vulnerability Research Teamt (VRT)
3. The Cisco Threat Research, analysis and communcations (TRAC) team.

What are 7 intelligence feeds that the Cisco Talos team receives information from?

1. Advanced Microsoft and Industry disclosures
2. The Advanced Malware Protection (AMP) community
3. ClamAV, Snort, Immunet, SpamCop, SenderBase, Threat Grid and Talos User communities
4. Honeypots
5. The Sourcefire Awareness Education, Guidance, and Intelligence Sharing (AEGIS)
6. Private and public threat feeds
7. Dynamic Analysis

What is Cisco Threat Grid?

It is a Controlled and Monitored Sandbox environment where static file analysis (Scan Files) can be performed as well as dynamics file analysis (Run files)
  • Higher grades + faster learning
  • Never study anything twice
  • 100% sure, 100% understanding
Discover Study Smart
Testimonial person
Sophia
Law student
Quotes

For my 1st exam I got a C. Then, I started looking for ways to learn better and I came across Study Smart. Since then I have scored a A+, A, A- and another A. I highly recommend it to everyone who wants to hear it. I am so happy with it!!

Testimonial person
John
Economics Student
Quotes

I was struggling to finish all my first-year subjects for 3 years. Then I discovered Study Smart, which helped me to finish all of them within 3 months.

Testimonial person
Sara
Public Administration Student
Quotes

Because of StudySmart, things are going well in many ways. Before, I always had study stress and no time for anything. Now I feel calm and confident (because of the program). I used to score a B, now I usually score an A or A+.

Testimonial person
Mary
Business Student
Quotes

Hey Chris, I really want to thank you very much for developing the platform, I usually got around C for my exams, now I scored an A+, an A and a A- !!

Testimonial person
Melanie
Psychology Student
Quotes

Since using Study Smart, my average has increased significantly. I even completed a statistics course with a A+ while I'm bad at statistics. I took on extra courses this year, because of Study Smart. Thanks so much!

Testimonial person
Jane
Nursing Studies
Quotes

Ever since I started studying with StudySmart I passed all my exams !!! No more re-sits!! At first, I was happy with a pass and now I only get good grades. Many thanks!

Testimonial person
Rose
Political Science Student
Quotes

I aced all the courses I studied with Study Smart. For law, I first scored a D, and now an A! I’m 100% sure that I’ll pass all the courses I study with Study Smart.

Testimonial person
Tina
Medicine Student
Quotes

I always thought I studied well. My grades were fine. I could never have imagined that applying these study skills would have such a huge and direct impact on my grades, my speed and the pleasure I have in learning.

Testimonial person
Julie
Marketing Student
Quotes

For the first time, I finally feel totally confident about the way I learn. I have the perfect overview and make great progress in terms of speed and the grades I get. Thanks, Chris!

Testimonial person
Matt
Industrial Engineering Student
Quotes

I immediately started to enjoy learning again, and my grades soared. All of a sudden, everything went better. I highly recommend Study Smart to all students..

Testimonial person
Emma
Law Student
Quotes

Being able to create my materials online made the process of studying so much smoother and quicker. I no longer have to spend a huge amount of my time on creating my summaries.

Testimonial person
Michael
Psychology Student
Quotes

At first, my notes were a mess. Now I use Study Smart to take my notes in a perfectly structured way. It helps me to save a lot of time and do other things I enjoy.

Testimonial person
Emily
Teacher
Quotes

Students that study with Study Smart get better grades. The system applies all the learning methods in such a way that both well-performing students and students who struggle perform much better.

Testimonial person
Richard
Literature Student
Quotes

Hi Chris, I would like to thank you very much. Last year I scored C on a course, and this year I got an A+ thanks to your method! Thank you very much!

Testimonial person
Madison
Parent
Quotes

The largest effect is that my child is more enthusiastic about school! Every parent wants their children to be happy at school, Study Smart made it happen.

Testimonial person
Robert
Accountant Student
Quotes

In high school, I failed several exams, and that has really changed now. I actually needed this tool very much back then. Since I started studying with StudySmart, I haven't had any D's. My average score is now an A and those are results I would have never had in the past

Testimonial person
James
Business and Science Student
Quotes

With my old method, I passed only 3 out of 8 courses. Since I started taking my notes digitally in Study Smart, I have passed all my courses on the first try. For me, StudySmart takes away the stress of wondering if I will pass or not.

Testimonial person
Christopher
Veterinarian Student
Quotes

Thanks to StudySmart, I passed all my exams, and with better grades than before! On top of that, I have mastered a very good study method now, which I am confident will help me earn my degree.

What is the Glovebox used for in Cisco Threat Grid?

To manually upload suspicious files into a sandbox environment and interact with them and observe their behaviour.

What is Cisco Advanced Malware Protection?

It is a malware analysis and protection solution that goes beyond point-in-time detection.

- Before (Global threat intelligence from Cisco Talo and Cisco Threat Grid feeds into AMP to protect against known and new emerging threats.

- During (File reputation to determine wheter a file is clean or malicious as well as sandboxing are used to identify threats during an attack

- After (Cisco AMP provides Retrospection, Indicators of Compromise, Tracking, Analysis and surgical remediation.

What are the 3 main components of Cisco AMP?

1. AMP Cloud (Private or Public)
2. AMP Connectors
3. Threat Intelligence from Cisco Talos and Cisco Threat Grid

What are 5 Cisco AMP Connectors?

1. AMP for Endpoints (Windows, Mac, android, ios, Linux)
2. AMP for Networks (NGFW, NGIPS, ISRs)
3. AMP for Email (ESA)
4. AMP for Web (WSA)
5. AMP for Meraki MX

What is Cisco Umbrella?

Formerly known as OpenDNS it is Secure Cloud DNS service that blocks requests to malicious internet destination using the DNS.

What is the Cisco Web Security Appliance (WSA)?

It is an all-in-one web gateway that includes a variaty of protections. Including malware defence and data loss prevention.

How can Cisco WSA be deployed?

In the cloud, as a virtual appliance, on premises or in a hybrid arrangement.

What is Cisco Email Security Appliance (ESA)?

It is an email security appliance that uses a multilayered approach. It uses a wide variety of advanced threat protection capabilities.

What are the 5 capabilities that an IPS system needs to be a Next-Generation IPS (NGIPS)?

1. Real-time contextual awareness
2. Advanced threat protection
3. Intelligent Security Automation
4. Unparalleled performance and scalability
5. Application visibility and control (AVC) and URL Filtering

What Cisco device is capable of NGIPS?

The Cisco Firepower NGIPS, added to the Cisco portfolio with the acquisition of Sourcefire in 2013.

What is Cisco Stealthwatch?

A collector and aggregator of network telemetry data that performs network security analysis and monitoring to automatically detect threats.

What are the 2 available Stealthwatch offerings?

1. Stealthwatch Enterprise?
2. Stealthwatch Cloud

What 3 components are required for Cisco Stealthwatch Enterprise?

1. Flow Rate License
2. Flow Collector
3. Stealthwatch Management Console (SMC)

What are the 2 options for Cisco Stealthwatch Cloud?

1. Public Cloud Monitoring
2. Private Network Monitoring

What is the Public Cloud Monitoring offering of Cisco Stealthwatch Cloud used for?

For monitoring and threat detection in AWS, GCP and Microsoft Azure.

What is the Private Network Monitoring offering of Cisco Stealthwatch Cloud used for?

It is a cloud based service for additional visibility and threat detection for the on premises network.

The question on the page originate from the summary of the following study material:

CCNP and CCIE Enterprise Core Official Cert Guide | 1-58714-523-5 | Bradley Edgeworth, et al

View summary
  • A unique study and practice tool
  • Never study anything twice again
  • Get the grades you hope for
  • 100% sure, 100% understanding
Remember faster, study better. Scientifically proven.
Trustpilot Logo

Summaries related to Spanning Tree Protocol - Spanning Tree Protocol Fundamentals