ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 200-201 All Questions

View all questions & answers for the 200-201 exam
Go to Exam

Exam 200-201 topic 1 question 255 discussion

Actual exam question from Cisco's 200-201
Question #: 255
Topic #: 1
[All 200-201 Questions]

Which system monitors local system operation and local network access for violations of a security policy?

  • A. host-based data loss prevention
  • B. host-based intrusion detection
  • C. antivirus
  • D. sandbox
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by MartinRB at Feb. 19, 2023, 10:03 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
macxwhale
1 year, 5 months ago
Help find source of the answer for clarification.....
upvoted 1 times
...
mozaki
1 year, 8 months ago
Selected Answer: B
correct
upvoted 3 times
...
MartinRB
1 year, 9 months ago
why not DLP?
upvoted 1 times
Silexis
10 months, 1 week ago
I think that this is because the question asks about "local system" and DLP is actually checking the data in use created and accesses by the user and not by the system itself - ex a HIDS will look for a DLL Injection in MS Word executable as a system and not if a MS Word document containing PII is copied on a USB stick. Otherwise DLP it is indeed a correct choice........
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel