How do you see the current cybersecurity environment? What is top of mind for customers?

Jaime Chanagá (JC): In 2022 I had the privilege of traveling to over ten countries in Latin America, including the Caribbean and Canada, to speak with senior executives and organizations in a variety of industry sectors. Most C-Level executives, including CEOs, CFOs, and board members, have the same concerns that CISOs, CSOs, and CIOs share. The top three concerns for their businesses are 1) business resilience, 2) cybersecurity capability & maturity, and 3) human resources challenges for acquiring, training, and retaining cybersecurity talent. 

Daniel Kwong (DK): The current cybersecurity environment is top of mind for many customers. They are concerned about the increasing number of cyberattacks and the evolving nature of threats due to digital transformation. In addition, during the pandemic, customers rapidly transformed their organizations in order to survive the business environment. Some organizations are learning about additional challenges they now face resulting from this change. 

We hear often that cyber risk is escalating, do you agree?

JC: Overall, cybersecurity risks are increasing. Let’s compare, for example, the adoption of new technologies such as artificial intelligence (AI). While some organizations have not yet adopted AI-based technology, cyber adversaries have and are using it to challenge today’s cybersecurity defenses. That said, it’s important for organizations to consider adopting AI to defend against increasingly sophisticated cyberattacks. Cyber risks posed by innovations like AI, cloud computing, and the increasing sophistication of the threat landscape are creating the perfect storm to exponentially escalate cyber risks against businesses and governments.

DK: I agree that cyber risk is escalating, and we can see that this is due to the continued digital transformation of businesses, which creates more opportunities for cybercriminals in the expanded threat landscape. Bad actors now have more ways to penetrate an organization’s environment due to the increasingly extensive use of remote access to work and learning from anywhere. For example, some applications are designed to be 100% cloud-native and store data in multiple uncontrolled environments. Also sometimes IoT sensors are placed in critical infrastructure without proper segmentation. Most importantly, cyber risk is increasing due to the lack of security awareness training for remote employees, which can then leave employees vulnerable to phishing attacks. Organizations should consider implementing training and awareness programs for their employees to ensure the safety of people, data, and devices.

What are the networking solutions that are really making an impact on customers and partners this year?

What is an example of a Cisco CCNP Enterprise solution?

CCNP Enterprise solution (Core)Number of exam questionsTimeFrom
Question 1:

Refer io me exhibit.

350-401 q1

An engineer configures the trunk and proceeds to configure an ESPAN session to monitor VLANs10. 20. and 30.

Which command must be added to complete this configuration?

A. Device( no filter vlan 30

B. Devic(config.mon.erspan.src-dst)# no vrf 1

C. Devic(config.mon.erspan.src-dst)# erspan id 6

D. Device(config.mon-erspan.Src-dst)# mtu 1460

Correct Answer: A

Question 2:

An engineer must protect their company against ransomware attacks. Which solution allows the engineer to block the execution stage and prevent file encryption?

A. Use Cisco AMP deployment with the Malicious Activity Protection engineer enabled.

B. Use Cisco AMP deployment with the Exploit Prevention engine enabled.

C. Use Cisco Firepower and block traffic to TOR networks.

D. Use Cisco Firepower with Intrusion Policy and snort rules blocking SMB exploitation.

Correct Answer: A

Ransomware is malicious software that locks up critical resources of the users. Ransomware uses well-established public/private key cryptography which leaves the only way of recovering the files being the payment of the ransom, or restoring files from backups.

Cisco Advanced Malware Protection (AMP) for Endpoints Malicious Activity Protection (MAP) engine defends your endpoints by monitoring the system and identifying processes that exhibit malicious activities when they execute and stop them from running. Because the MAP engine detects threats by observing the behavior of the process at run time, it can generically determine if a system is under attack by a new variant of ransomware or malware that may have eluded other security products and detection technology, such as legacy signature-based malware detection. The first release of the MAP engine targets the identification, blocking, and quarantine of ransomware attacks on the endpoint.

Question 3:

Which devices does Cisco DNA Center configure when deploying an IP-based access control policy?

A. All devices integrating with ISE

B. selected individual devices

C. all devices in selected sites

D. all wired devices

Correct Answer: C

When you click Deploy, Cisco DNA Center requests the Cisco Identity Services Engine (Cisco ISE) to send notifications about the policy changes to the network devices.

Reference: dna-center/1-2/user_guide/b_dnac_ug_1_2/b_dnac_ug_1_2_chapter_01000.html#id_53453 dna-center/1-3-1-0/user_guide/ b_cisco_dna_center_ug_1_3_1_0/ b_cisco_dna_center_ug_1_3_1_0_chapter_01011.html

Question 4:

Which two statements about VRRP are true? (Choose two)

A. It supports both MD5 and SHA1 authentication.

B. It is assigned multicast address

C. Three versions of the VRRP protocol have been defined.

D. It is assigned multicast address

E. The TTL for VRRP packets must be 255.

F. Its IP address number is 115.

Correct Answer: CE

Question 5:

Which free application has the ability to make REST calls against Cisco DNA Center?

A. API Explorer

B. REST Explorer

C. Postman

D. Mozilla

Correct Answer: C

Question 6:

Which command set configures RSPAN to capture outgoing traffic from VLAN 3 on interface GigabitEthernet 0/3 while ignoring other VLAN traffic on the same interface?

350-401 q6

A. Option A

B. Option B

C. Option C

D. Option D

Correct Answer: B

Question 7:

What are two benefits of YANG? (Choose two.)

A. It enables multiple leaf statements to exist within a leaf list

B. It collects statistical constraint analysis information.

C. It enforces configuration constraints.

D. It enforces configuration semantics.

E. It enforces the use of a specific encoding format for NETCONF

Correct Answer: BE

Question 8:


Drag and drop the characteristics from the left onto the deployment models on the right.

Select and Place:

350-401 q8

Correct Answer:

350-401 q8-1

Question 9:

……..commands or command set must be used? (Choose two.)

350-401 q9

A. Option A

B. Option B

C. Option C

D. Option D

E. Option E

Correct Answer: CD

Question 10:

Refer to the exhibit.

350-401 q10

After configuring the BGP network, an engineer verifies that the path between server1 and server2 is functional, why did RouterSF choose the route from RouterDAL instead of the route from RouterCHI?

A. BGP is not running on RouterCHI

B. The Router-ID for Router DAL is lower than Router-ID for RouterCHI

C. There is a static route in RouterSF for

D. The route from RouterDAL has a lower MED

Correct Answer: B

Get More Cisco CCNP Enterprise (Core exam) 350-401: (944 Q&A)

