Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Cisco Exam 350-201 Topic 10 Question 101 Discussion

Actual exam question for Cisco's 350-201 exam
Question #: 101
Topic #: 10
[All 350-201 Questions]

A SOC team receives multiple alerts by a rule that detects requests to malicious URLs and informs the incident response team to block the malicious URLs requested on the firewall. Which action will improve the effectiveness of the process?

Show Suggested Answer Hide Answer
Suggested Answer: B, D

Contribute your Thoughts:

Sue
1 months ago
Option A sounds like a good way to get everyone fired. Let's not block local traffic, folks. I'm with Adaline on this one - D is the winner.
upvoted 0 times
Mitzie
4 days ago
D) Create an automation script for blocking URLs on the firewall when the rule is triggered.
upvoted 0 times
...
Jesusa
24 days ago
A) Block local to remote HTTP/HTTPS requests on the firewall for users who triggered the rule.
upvoted 0 times
...
...
Della
2 months ago
Hmm, I'm not so sure about option B. Do we really want to clutter people's inboxes with automated emails? I'd prefer the automation script in option D.
upvoted 0 times
Francesco
1 months ago
Definitely, having an automation script in place will streamline the response process and prevent delays.
upvoted 0 times
...
Nidia
1 months ago
I agree, automation is key in these situations. It's more efficient than manual processes.
upvoted 0 times
...
Carri
1 months ago
Option D sounds like the best choice. It would save time and ensure the URLs are blocked quickly.
upvoted 0 times
...
...
Bea
2 months ago
Whoa, hold up! Option B might be a good idea too. Letting the user know when they've triggered the rule could help them avoid future issues.
upvoted 0 times
...
Mabel
2 months ago
I see both points, but I think option C is also important. Keeping the incident response team informed is crucial for coordination.
upvoted 0 times
...
Adaline
2 months ago
I think option D is the way to go. Automating the blocking process on the firewall is the most efficient solution here.
upvoted 0 times
Wava
1 months ago
I agree, creating a script to block URLs automatically is the most effective way to handle this situation.
upvoted 0 times
...
Lazaro
1 months ago
Option D is definitely the best choice. Automating the blocking process will save us a lot of time.
upvoted 0 times
...
...
Filiberto
2 months ago
I disagree, I believe option A is more effective. Blocking local to remote requests will prevent further damage.
upvoted 0 times
...
Adela
3 months ago
I think option D is the best choice. It will save time and ensure immediate action.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77