Having gone over this question again carefully, I stand by C with another link from cisco.
https://www.cisco.com/c/en/us/products/collateral/security/fireamp-endpoints/datasheet-c78-733181.html
Also from the same link you've pasted: "Secure Endpoint employs patented technology that automatically uncovers advanced threats that have entered your environment. Powered by continuous monitoring, Secure Endpoint correlates new threat information with your past history and automatically quarantines files the moment they start to exhibit malicious behavior. This automated response to the latest threats provides a faster time to detection and greatly reduces the proliferation of the malware."
EPP solutions focuses more on real-time prevention, detection, and response to active threats rather than retrospective analysis - which EDR solutions typically offer.
Also from the same link you've pasted: "With continuous file analysis, EDR will be able to flag offending files at the first sign of malicious behavior. If a file is initially deemed safe, but after a few weeks begins to exhibit ransomware activity, EDR will detect the file and start the process of evaluation and analysis, while alerting your organization to act."
EPP: blocking known malware at the point of entry using built-in protection mechanisms, including signature-based malware defenses. So A can't be right
EDR focuses primarily on detecting advanced threats, those designed to evade front-line defenses and have successfully entered the environment. An EPP focuses solely on prevention at the perimeter. It is difficult, if not impossible, for an EPP to block 100 percent of threats. A holistic endpoint security solution deploys both EPP and EDR capabilities.
If the EDR has retrospective capabilities, this actionable data should be used to automatically remediate systems to their state prior to infection.
Id go with D
EPP:
One of the largest threats to an endpoint is malware. Malware can come from many sources, but often it gets onto a device when users click a link from an email or the web. Once inside your environment, malware seeks to infect as much data and as many processes as it can. Ransomware, phishing, and cryptomining are just some of the more recent malware variants
EPP: blocking known malware at the point of entry using built-in protection mechanisms, including signature-based malware defenses. So A can't be right
Correct answer is D. Without EDR functionality, classic EPP doesn't offer retrospective analysis
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.350-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
IETF1
11 months, 1 week agoums008
1 year, 4 months agoTotosos1
1 year, 7 months agoTuxzinator
1 year, 9 months agoAnonymous983475
1 year, 10 months agoEmlia1
1 year, 11 months agoEd1976
1 year, 11 months agosmartcarter
2 years agosmartcarter
1 year, 12 months agoTthurston1
6 months, 2 weeks agoTthurston1
6 months, 2 weeks agoTthurston1
6 months, 2 weeks agoTthurston1
6 months, 2 weeks agoInitial14
2 years, 1 month agoInitial14
2 years, 1 month agoInitial14
2 years, 1 month agoInitial14
2 years, 1 month agoarditv
2 years, 1 month ago