Exam 350-701 topic 1 question 101 discussion

I think the answer is B. https://www.cisco.com/c/en/us/support/docs/storage-networking/security/214859-configure-and-troubleshoot-cisco-threat.html

The answer is B, there no possibility to integrate ThreatGrid with TID at all. You could check the administration guide of TID.

B is correct

https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/cisco_threat_intelligence_director__tid_.html

should be B

TID is used to leverage external threat feeds. ThreatGrid is already integrated with the AMP capability of FTD.

Answer should be B https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2020/pdf/BRKDEV-2456.pdf Page 28 Cisco Threat Intelligence Director (TID) Step 1 Ingest third-party Cyber Threat Intelligence (CTI) Step 2 Publish observables to sensors Step 3 Detect and alert on incidents

Answer should be B https://blogs.cisco.com/developer/automate-threat-intelligence-using-cisco-threat-intelligence-director

i would go with B here. Because the TID is used if you want to use external (not cisco provided) Security Information / Observables, in addition to what you get from cisco -> "The Cisco Threat Intelligence Director (TID) operationalizes threat intelligence data, helping you aggregate intelligence data, configure defensive actions, and analyze threats in your environment. This feature is intended to supplement other Firepower functionality, offering an additional line of defense against threats" https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/cisco_threat_intelligence_director__tid_.html and for AMP you dont need the TID. AMP(for Networks) comes with its own configuration o the FMC for example where you can define the cloud you want to use etc.

It looks to me C.As it the cisco exam.Cisco treat grid

B sounds correct to me

I went with C at first, but B makes more sense. External threat feed is a option on ESA, but I don't see any example of using TID. TID is usually added to FP in intelligence sources.

The answer is B: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_0110001.html

Looks like it might be "B" https://www.cisco.com/c/en/us/td/docs/security/firepower/623/configuration/guide/fpmc-config-guide-v623/cisco_threat_intelligence_director__tid_.html Feature introduced: Lets you use threat intelligence from external sources to identify and process threats.

the answer is C. More information take a look in, chapter 11, page 654, book "ccnp and ccie security Core"