CISCO Security Online Test

Q: What are the main security-related tests?

We offer several security-related tests, including: Ethical Hacking Test Cyber Security Assessment Test Penetration Testing Test

The Cisco Security Online Test uses scenario-based MCQs to evaluate candidates on their understanding of network security concepts and Cisco network security products and solutions. The test assesses candidates on their knowledge of security technologies, such as firewall, VPN, intrusion prevention, and content security, as well as their ability to design and implement secure network architectures using Cisco products.

Covered skills:

CISCO Firewall
CISCO IPS/IDS
CISCO VPN
Network Security Concepts
Access Control and Identity Management
Security Policies and Best Practices
CISCO Security Appliances
CISCO Security Solutions
Network Threats and Vulnerabilities

Get started for free

Preview questions

About the CISCO Security Test

The CISCO Security Online Test helps recruiters and hiring managers identify qualified candidates from a pool of resumes, and helps in taking objective hiring decisions. It reduces the administrative overhead of interviewing too many candidates and saves time by filtering out unqualified candidates at the first step of the hiring process.

The test screens for the following skills that hiring managers look for in candidates:

Understanding and applying CISCO Security concepts
Configuring and managing CISCO Firewalls
Implementing and troubleshooting CISCO IPS/IDS
Setting up and maintaining CISCO VPNs
Applying Network Security Concepts
Managing Access Control and Identity Management
Implementing Security Policies and Best Practices
Configuring and managing CISCO Security Appliances
Designing and implementing CISCO Security Solutions
Identifying and mitigating Network Threats and Vulnerabilities

1200+ customers in 80 countries

Use Adaface tests trusted by recruitment teams globally. Adaface skill assessments measure on-the-job skills of candidates, providing employers with an accurate tool for screening potential hires.

Get started for free

Preview questions

Non-googleable questions

We have a very high focus on the quality of questions that test for on-the-job skills. Every question is non-googleable and we have a very high bar for the level of subject matter experts we onboard to create these questions. We have crawlers to check if any of the questions are leaked online. If/ when a question gets leaked, we get an alert. We change the question for you & let you know.

How we design questions

These are just a small sample from our library of 15,000+ questions. The actual questions on this CISCO Security Online Test will be non-googleable.

🧐 Question
Medium BGP Path Selection BGP Configuration BGP Troubleshooting Bgp Configuration Route Maps	Solve
You are a senior network engineer analyzing a BGP configuration issue in a Cisco router. The router is receiving multiple routes to a particular network, 192.168.100.0/24, from different BGP peers. Your task is to ensure that the router always prefers the path through the neighbor 10.10.10.1, irrespective of other path attributes like AS path length, MED, or local preference. Currently, the BGP configuration includes several route maps and prefix lists but doesn't enforce this specific requirement. Given this scenario, which of the following additions to the BGP configuration would ensure that the route through 10.10.10.1 is always preferred? A: Apply a route map to neighbor 10.10.10.1 setting a lower MED value for 192.168.100.0/24. B: Set a higher local preference for routes received from 10.10.10.1 using a route map. C: Use a prefix list to filter all routes to 192.168.100.0/24 except those from 10.10.10.1. D: Implement an AS path access list to prepend fake AS numbers to routes from other neighbors. E: Modify the existing route maps to set a higher weight for routes from 10.10.10.1. F: Adjust the BGP router ID to a lower value than that of the other BGP peers.
Medium OSPF Inter-Area Route Filtering OSPF Configuration Route Summarization Routing Control	Solve
In a large service provider network, five OSPF areas are configured: Area 0 (Backbone), Area 1, Area 2, Area 3, and Area 4. Area 1 is a normal area, Area 2 is configured as a stub area, Area 3 is a totally stubby area, and Area 4 is an NSSA (Not So Stubby Area). Each area has multiple routers and networks. Router X in Area 1 has an external route (E2) to the network 172.30.0.0/16 and is connected to Area 0. Router Y in Area 2 summarizes its internal routes to 192.168.0.0/18. Router Z in Area 3 has a default route to Area 0 and an external route to 10.20.0.0/16 redistributed as an N2 route in Area 4. Given this configuration, which of the following statements is true when a packet is routed from a network in Area 4 to 172.30.0.0/16? A: The packet will be dropped because NSSA does not allow external routes to be advertised into the area. B: The packet will be routed to Router X via Area 1, as Area 4 allows the redistribution of external routes into the area as N2 LSAs. C: The packet will traverse through Area 0 to reach Router X, which advertises the external route to 172.30.0.0/16. D: The packet will take a default route from Area 3 to Area 0, as Area 3 is a totally stubby area and does not have specific route information for 172.30.0.0/16. E: The packet will be routed directly to Router Y in Area 2 due to the summary route, which incorrectly captures the 172.30.0.0/16 network. F: The packet will be routed to Router Z in Area 3, which has a specific external route to 172.30.0.0/16.
Medium OSPF Network Analysis OSPF Configuration OSPF Troubleshooting Routing Loops	Solve
As a senior network engineer, you are investigating an issue in an OSPF (Open Shortest Path First) network. The network consists of various routers configured in multiple areas, with Area 0 as the backbone. Recently, intermittent routing loops and instability have been reported. Upon reviewing the configurations and logs, you notice the following key points: 1. Area 0 is functioning normally with stable LSA (Link State Advertisement) exchanges. 2. A non-backbone area (Area 1) is showing frequent LSA refreshes and topology changes. 3. Routers in Area 1 have multiple OSPF neighbors, including an ABR (Area Border Router) connecting to Area 0. 4. The ‘show ip ospf database’ command reveals numerous LSA types 3 (Summary LSAs) and 5 (External LSAs) being frequently updated in Area 1. Which of the following actions is most likely to resolve the routing instability and loops in Area 1? A: Redistribute static routes into the OSPF process on the ABR, focusing on stabilizing Area 1. B: Configure Area 1 as a stub area to reduce the number of Type 5 LSAs. C: Implement route summarization on the ABR between Area 0 and Area 1. D: Increase the SPF algorithm calculation timers to reduce LSA refresh frequency. E: Convert Area 1 to a Totally Stubby Area to filter out Type 3 and Type 5 LSAs. F: Adjust OSPF priorities on routers in Area 1 to elect a more stable DR (Designated Router).
Medium Routing Protocols Configuration Routing Configuration OSPF EIGRP Network Design	Solve
A network engineer is configuring a new routing protocol setup for a large enterprise network. The network has multiple subnets and requires both OSPF and EIGRP protocols for different segments. The primary data center uses OSPF with an OSPF area ID of 0, while branch offices use EIGRP with an autonomous system number of 100. The network requirements are as follows: 1. OSPF must have a router ID of 10.10.10.10. 2. EIGRP needs to be optimized for low bandwidth consumption. 3. Redistribution between OSPF and EIGRP is required, with route filtering to prevent routing loops. 4. OSPF areas other than area 0 will be stub areas. Considering these requirements, which of the following configurations is most appropriate? A: Configure OSPF area 0 with router ID 10.10.10.10 and use default EIGRP settings. B: Configure EIGRP with bandwidth optimization and OSPF with router ID 10.10.10.10, without route redistribution. C: Set OSPF area 0 with router ID 10.10.10.10, configure EIGRP for bandwidth optimization, and enable mutual redistribution with proper route filtering. D: Use OSPF with area ID 100 and EIGRP with autonomous system 0, with mutual redistribution. E: Configure OSPF in all areas as stub and set EIGRP to use the lowest bandwidth setting. F: Implement OSPF with router ID 10.10.10.10 and EIGRP with bandwidth optimization, but without any redistribution or filtering.
Medium Mac address and IP on router hop Routers Switches Mac Address Resolution Packet Forwarding	Solve
Refer to the following exhibit: Host A is sending a packet to Host B. 1. What is the source and destination MAC address at point PA? 2. What is the source and destination IP address at point PB? // Option A PA: source MAC - Mac-A PA: destination MAC - Mac-B PB: source IP - 192.168.1.1 PB: destination IP - 192.168.3.1 // Option B PA: source MAC - Mac-A PA: destination MAC - Mac-RA PB: source IP - 192.168.3.3 PB: destination IP - 192.168.3.1 // Option C PA: source MAC - Mac-A PA: destination MAC - Mac-B PB: source IP - 192.168.3.3 PB: destination IP - 192.168.3.1 // Option D PA: source MAC - Mac-A PA: destination MAC - Mac-RA PB: source IP - 192.168.1.1 PB: destination IP - 192.168.3.1
Easy MX Record, DMARC and Email Authentication DNS MX Records DMARC SPF DKIM	Solve
You work as a network administrator for a company, "example.com", that recently started experiencing issues with email spoofing. To mitigate the problem, you decide to implement DMARC (Domain-based Message Authentication, Reporting & Conformance) in addition to existing SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) records. Your current DNS records for example.com include the following: - MX 10 mail.example.com (IP address 203.0.113.10) - TXT "v=spf1 ip4:203.0.113.10 -all" - TXT "v=DKIM1; k=rsa; p=public-key-here" You add the following DMARC record: - TXT "_dmarc.example.com" "v=DMARC1; p=quarantine; pct=100; rua=mailto:report@example.com" After implementing the DMARC record, an external mail server sends an email to your domain. The email passes the SPF and DKIM checks but fails the DMARC check. What will likely happen to the email? A: The email will be accepted and delivered to the recipient's inbox. B: The email will be rejected and returned to the sender as undeliverable. C: The email might be delivered to the recipient's spam or junk folder. D: The email will be accepted, but a report will be sent to the sender. E: The email will be silently discarded, and the sender will not be notified.
Medium Remote network resources Gateway Routing protocols Ospf Routing Network Connectivity	Solve
Review the following exhibit: Angelina noticed that the computers on 192.168.10.0/24 network can ping their default gateway. But they found that these computers cannot connect to any remote network resources. Which of the following is the most likely reason for this?
Medium SSL Certificate Expiry SSL/TLS Network Security Ssl/tls	Solve
You are a network administrator for an e-commerce company. The company's online store allows customers to browse products and make purchases securely over the internet. The online store uses SSL/TLS for secure communication. You receive reports that some customers are seeing a security warning in their web browsers when trying to access the online store. Upon investigation, you discover the following information: - The SSL certificate used by the online store's web server is valid for one year and is due to expire in two days. - The web server is configured to automatically redirect HTTP traffic to HTTPS. - The SSL certificate was issued by a trusted certificate authority (CA), and all major web browsers have the CA's root certificate in their trusted certificate stores. - The SSL certificate includes the correct domain name for the online store. Given the above information, which of the following steps should be taken to resolve the issue and prevent customers from seeing the security warning? A: Extend the validity of the current SSL certificate by one year. B: Obtain a new SSL certificate from the same CA and install it on the web server before the current certificate expires. C: Remove the automatic redirect from HTTP to HTTPS on the web server. D: Ask customers to ignore the security warning and proceed to the online store. E: Replace the SSL certificate with a self-signed certificate.
Medium Cookie Security Analysis Web Application Security HTTP Cookies Cross-Domain Communication	Solve
You are a cybersecurity officer and a new third-party payment gateway is integrated into your company's e-commerce website. The payment gateway API is hosted on a different domain (pay-gateway.com) than your e-commerce site (my-ecommerce.com). You receive some reports that users are unable to complete their transactions intermittently. You obtain the following set of HTTP cookies from an affected user: 1. user_session=1; Domain=my-ecommerce.com; Path=/; Secure; HttpOnly 2. payment_session=xyz123; Domain=pay-gateway.com; Path=/; Secure; HttpOnly 3. cart_id=abcd1234; Domain=my-ecommerce.com; Path=/; Secure 4. csrf_token=efgh5678; Domain=my-ecommerce.com; Path=/; Secure 5. currency=USD; Domain=my-ecommerce.com; Path=/; 6. same_site_test=1; Domain=my-ecommerce.com; Path=/; Secure; SameSite=None 7. payment_verification=; Domain=my-ecommerce.com; Path=/; Secure; HttpOnly Which of the following configuration modifications would likely solve the intermittent transaction failure issue? A: Set SameSite=Strict attribute on all cookies. B: Set "SameSite=None; Secure" attribute on the payment_session cookie. C: Change the Domain attribute of payment_session cookie to my-ecommerce.com. D: Set HttpOnly attribute on cart_id and csrf_token cookies. E: Remove Secure attribute from user_session cookie.
Medium Security Incident Log Analysis Security Pattern Recognition	Solve
You are the security analyst for a company and are currently investigating a security incident. You found the following log entries in your HTTP server logs, which appear to be linked to the incident: 1. 192.0.2.4 - - [24/May/2023:13:15:30 +0000] "GET /wp-login.php HTTP/1.1" 200 167 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" 2. 192.0.2.4 - - [24/May/2023:13:15:31 +0000] "POST /wp-login.php HTTP/1.1" 302 152 "http://www.example.com/wp-login.php" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" 3. 192.0.2.4 - - [24/May/2023:13:15:32 +0000] "GET /wp-admin/install.php HTTP/1.1" 200 125 "http://www.example.com/wp-admin/" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" Based on this information, which of the following statements are correct? A: The attacker was unable to compromise the Wordpress login page but was successful in accessing the installation page. B: The attacker attempted to login to a Wordpress site and, despite the login failing, was able to access the Wordpress installation page. C: The attacker was attempting a dictionary attack on the Wordpress site and accessed the Wordpress installation page. D: The logs indicate that the attacker was able to compromise the Wordpress login and directly access the installation page. E: The attacker attempted to login to a Wordpress site, succeeded, and then tried to access the Wordpress installation page.
Medium Network Traffic Anomaly Network Traffic Analysis Network Protocols Dns Traffic Analysis Network Anomaly Detection	Solve
You are a cybersecurity engineer working on a network traffic analysis case. You have been given the following set of observations from network logs of the past 24 hours: - Observation 1: 1,000,000 DNS requests were recorded, 50% more than the usual daily traffic. - Observation 2: 85% of these DNS requests have the same subdomain but different domain names. - Observation 3: For each of these DNS requests, an HTTP POST request follows immediately. - Observation 4: No other significant anomalies were detected in the system logs. Given these observations, what would you suspect is happening? A: The network is experiencing a DNS amplification attack B: There is a misconfiguration in the DNS settings C: The system is the source of a SYN flood attack D: A fast-flux DNS network is in operation E: The system is infected with a DNS tunneling based malware
Medium SQL Log Analysis SQL Injection Log Analysis Sql Injection Pattern Recognition	Solve
You are investigating a possible SQL injection attack on your company's web application. You found the following entries in the HTTP server logs: Note that each log line contains the following information: IP Address - Timestamp - Request URI - Request Status - Response Size Based on the log entries, which of the following statements are correct? A: The attacker logged in successfully but failed to execute the SQL injection. B: The attacker failed in the SQL injection attack. C: The attacker failed to login but successfully accessed the admin page. D: The attacker performed a successful SQL injection attack that dumped all product information. E: The attacker was unsuccessful in both the SQL injection attack and the login attempt.
Medium Misappropriation Post-Migration DNS Management Infrastructure Migration Subdomain Hijacking	Solve
A software company decided to move some of their web services from one cloud provider (Vendor A) to another (Vendor B) for better cost optimization. Initially, their main web application "webapp.company.com" was hosted at IP 192.0.2.1 on Vendor A's infrastructure. As part of this transition, it was moved to IP 203.0.113.1 on Vendor B's setup. Subsequently, a secondary web service previously hosted on "serviceA.company.com" at IP 192.0.2.2 (Vendor A), was migrated and re-hosted at "serviceB.company.com" at IP 203.0.113.2 (Vendor B). A month post-migration, the SEO team reported an unexpected spike in organic traffic to the "company.com" domain. Upon investigating, the IT team noticed unusual activity related to "serviceA.company.com" in the server access logs, including successful HTTP 200 responses from several requests. A suspicious HTTPS GET request, `GET /explicit-content.html HTTP/1.1`, was also recorded. Running `dig +short serviceA.company.com` returned IP address 198.51.100.1. Cross-checking this information with the company's DNS records revealed: Based on the details provided, identify the probable cause for the unexpected increase in organic traffic: A: The company failed to delete the DNS "A" record for "serviceB.company.com" before migration on vendor A. B: The company failed to delete the DNS "A" record for "serviceA.company.com" after migration. C: The company did not configure DNS record for webapp.company.com properly on Vendor B's platform. D: The DNS configuration for serviceB.company.com is incorrect post migration

	🧐 Question	🔧 Skill
	Medium BGP Path Selection BGP Configuration BGP Troubleshooting Bgp Configuration Route Maps	2 mins CISCO	Solve
You are a senior network engineer analyzing a BGP configuration issue in a Cisco router. The router is receiving multiple routes to a particular network, 192.168.100.0/24, from different BGP peers. Your task is to ensure that the router always prefers the path through the neighbor 10.10.10.1, irrespective of other path attributes like AS path length, MED, or local preference. Currently, the BGP configuration includes several route maps and prefix lists but doesn't enforce this specific requirement. Given this scenario, which of the following additions to the BGP configuration would ensure that the route through 10.10.10.1 is always preferred? A: Apply a route map to neighbor 10.10.10.1 setting a lower MED value for 192.168.100.0/24. B: Set a higher local preference for routes received from 10.10.10.1 using a route map. C: Use a prefix list to filter all routes to 192.168.100.0/24 except those from 10.10.10.1. D: Implement an AS path access list to prepend fake AS numbers to routes from other neighbors. E: Modify the existing route maps to set a higher weight for routes from 10.10.10.1. F: Adjust the BGP router ID to a lower value than that of the other BGP peers.
	Medium OSPF Inter-Area Route Filtering OSPF Configuration Route Summarization Routing Control	3 mins CISCO	Solve
In a large service provider network, five OSPF areas are configured: Area 0 (Backbone), Area 1, Area 2, Area 3, and Area 4. Area 1 is a normal area, Area 2 is configured as a stub area, Area 3 is a totally stubby area, and Area 4 is an NSSA (Not So Stubby Area). Each area has multiple routers and networks. Router X in Area 1 has an external route (E2) to the network 172.30.0.0/16 and is connected to Area 0. Router Y in Area 2 summarizes its internal routes to 192.168.0.0/18. Router Z in Area 3 has a default route to Area 0 and an external route to 10.20.0.0/16 redistributed as an N2 route in Area 4. Given this configuration, which of the following statements is true when a packet is routed from a network in Area 4 to 172.30.0.0/16? A: The packet will be dropped because NSSA does not allow external routes to be advertised into the area. B: The packet will be routed to Router X via Area 1, as Area 4 allows the redistribution of external routes into the area as N2 LSAs. C: The packet will traverse through Area 0 to reach Router X, which advertises the external route to 172.30.0.0/16. D: The packet will take a default route from Area 3 to Area 0, as Area 3 is a totally stubby area and does not have specific route information for 172.30.0.0/16. E: The packet will be routed directly to Router Y in Area 2 due to the summary route, which incorrectly captures the 172.30.0.0/16 network. F: The packet will be routed to Router Z in Area 3, which has a specific external route to 172.30.0.0/16.
	Medium OSPF Network Analysis OSPF Configuration OSPF Troubleshooting Routing Loops	2 mins CISCO	Solve
As a senior network engineer, you are investigating an issue in an OSPF (Open Shortest Path First) network. The network consists of various routers configured in multiple areas, with Area 0 as the backbone. Recently, intermittent routing loops and instability have been reported. Upon reviewing the configurations and logs, you notice the following key points: 1. Area 0 is functioning normally with stable LSA (Link State Advertisement) exchanges. 2. A non-backbone area (Area 1) is showing frequent LSA refreshes and topology changes. 3. Routers in Area 1 have multiple OSPF neighbors, including an ABR (Area Border Router) connecting to Area 0. 4. The ‘show ip ospf database’ command reveals numerous LSA types 3 (Summary LSAs) and 5 (External LSAs) being frequently updated in Area 1. Which of the following actions is most likely to resolve the routing instability and loops in Area 1? A: Redistribute static routes into the OSPF process on the ABR, focusing on stabilizing Area 1. B: Configure Area 1 as a stub area to reduce the number of Type 5 LSAs. C: Implement route summarization on the ABR between Area 0 and Area 1. D: Increase the SPF algorithm calculation timers to reduce LSA refresh frequency. E: Convert Area 1 to a Totally Stubby Area to filter out Type 3 and Type 5 LSAs. F: Adjust OSPF priorities on routers in Area 1 to elect a more stable DR (Designated Router).
	Medium Routing Protocols Configuration Routing Configuration OSPF EIGRP Network Design	2 mins CISCO	Solve
A network engineer is configuring a new routing protocol setup for a large enterprise network. The network has multiple subnets and requires both OSPF and EIGRP protocols for different segments. The primary data center uses OSPF with an OSPF area ID of 0, while branch offices use EIGRP with an autonomous system number of 100. The network requirements are as follows: 1. OSPF must have a router ID of 10.10.10.10. 2. EIGRP needs to be optimized for low bandwidth consumption. 3. Redistribution between OSPF and EIGRP is required, with route filtering to prevent routing loops. 4. OSPF areas other than area 0 will be stub areas. Considering these requirements, which of the following configurations is most appropriate? A: Configure OSPF area 0 with router ID 10.10.10.10 and use default EIGRP settings. B: Configure EIGRP with bandwidth optimization and OSPF with router ID 10.10.10.10, without route redistribution. C: Set OSPF area 0 with router ID 10.10.10.10, configure EIGRP for bandwidth optimization, and enable mutual redistribution with proper route filtering. D: Use OSPF with area ID 100 and EIGRP with autonomous system 0, with mutual redistribution. E: Configure OSPF in all areas as stub and set EIGRP to use the lowest bandwidth setting. F: Implement OSPF with router ID 10.10.10.10 and EIGRP with bandwidth optimization, but without any redistribution or filtering.
	Medium Mac address and IP on router hop Routers Switches Mac Address Resolution Packet Forwarding	2 mins Computer Networks	Solve
Refer to the following exhibit: Host A is sending a packet to Host B. 1. What is the source and destination MAC address at point PA? 2. What is the source and destination IP address at point PB? // Option A PA: source MAC - Mac-A PA: destination MAC - Mac-B PB: source IP - 192.168.1.1 PB: destination IP - 192.168.3.1 // Option B PA: source MAC - Mac-A PA: destination MAC - Mac-RA PB: source IP - 192.168.3.3 PB: destination IP - 192.168.3.1 // Option C PA: source MAC - Mac-A PA: destination MAC - Mac-B PB: source IP - 192.168.3.3 PB: destination IP - 192.168.3.1 // Option D PA: source MAC - Mac-A PA: destination MAC - Mac-RA PB: source IP - 192.168.1.1 PB: destination IP - 192.168.3.1
	Easy MX Record, DMARC and Email Authentication DNS MX Records DMARC SPF DKIM	2 mins Computer Networks	Solve
You work as a network administrator for a company, "example.com", that recently started experiencing issues with email spoofing. To mitigate the problem, you decide to implement DMARC (Domain-based Message Authentication, Reporting & Conformance) in addition to existing SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) records. Your current DNS records for example.com include the following: - MX 10 mail.example.com (IP address 203.0.113.10) - TXT "v=spf1 ip4:203.0.113.10 -all" - TXT "v=DKIM1; k=rsa; p=public-key-here" You add the following DMARC record: - TXT "_dmarc.example.com" "v=DMARC1; p=quarantine; pct=100; rua=mailto:report@example.com" After implementing the DMARC record, an external mail server sends an email to your domain. The email passes the SPF and DKIM checks but fails the DMARC check. What will likely happen to the email? A: The email will be accepted and delivered to the recipient's inbox. B: The email will be rejected and returned to the sender as undeliverable. C: The email might be delivered to the recipient's spam or junk folder. D: The email will be accepted, but a report will be sent to the sender. E: The email will be silently discarded, and the sender will not be notified.
	Medium Remote network resources Gateway Routing protocols Ospf Routing Network Connectivity	3 mins Computer Networks	Solve
Review the following exhibit: Angelina noticed that the computers on 192.168.10.0/24 network can ping their default gateway. But they found that these computers cannot connect to any remote network resources. Which of the following is the most likely reason for this?
	Medium SSL Certificate Expiry SSL/TLS Network Security Ssl/tls	2 mins Computer Networks	Solve
You are a network administrator for an e-commerce company. The company's online store allows customers to browse products and make purchases securely over the internet. The online store uses SSL/TLS for secure communication. You receive reports that some customers are seeing a security warning in their web browsers when trying to access the online store. Upon investigation, you discover the following information: - The SSL certificate used by the online store's web server is valid for one year and is due to expire in two days. - The web server is configured to automatically redirect HTTP traffic to HTTPS. - The SSL certificate was issued by a trusted certificate authority (CA), and all major web browsers have the CA's root certificate in their trusted certificate stores. - The SSL certificate includes the correct domain name for the online store. Given the above information, which of the following steps should be taken to resolve the issue and prevent customers from seeing the security warning? A: Extend the validity of the current SSL certificate by one year. B: Obtain a new SSL certificate from the same CA and install it on the web server before the current certificate expires. C: Remove the automatic redirect from HTTP to HTTPS on the web server. D: Ask customers to ignore the security warning and proceed to the online store. E: Replace the SSL certificate with a self-signed certificate.
	Medium Cookie Security Analysis Web Application Security HTTP Cookies Cross-Domain Communication	2 mins Cyber Security	Solve
You are a cybersecurity officer and a new third-party payment gateway is integrated into your company's e-commerce website. The payment gateway API is hosted on a different domain (pay-gateway.com) than your e-commerce site (my-ecommerce.com). You receive some reports that users are unable to complete their transactions intermittently. You obtain the following set of HTTP cookies from an affected user: 1. user_session=1; Domain=my-ecommerce.com; Path=/; Secure; HttpOnly 2. payment_session=xyz123; Domain=pay-gateway.com; Path=/; Secure; HttpOnly 3. cart_id=abcd1234; Domain=my-ecommerce.com; Path=/; Secure 4. csrf_token=efgh5678; Domain=my-ecommerce.com; Path=/; Secure 5. currency=USD; Domain=my-ecommerce.com; Path=/; 6. same_site_test=1; Domain=my-ecommerce.com; Path=/; Secure; SameSite=None 7. payment_verification=; Domain=my-ecommerce.com; Path=/; Secure; HttpOnly Which of the following configuration modifications would likely solve the intermittent transaction failure issue? A: Set SameSite=Strict attribute on all cookies. B: Set "SameSite=None; Secure" attribute on the payment_session cookie. C: Change the Domain attribute of payment_session cookie to my-ecommerce.com. D: Set HttpOnly attribute on cart_id and csrf_token cookies. E: Remove Secure attribute from user_session cookie.
	Medium Security Incident Log Analysis Security Pattern Recognition	2 mins Cyber Security	Solve
You are the security analyst for a company and are currently investigating a security incident. You found the following log entries in your HTTP server logs, which appear to be linked to the incident: 1. 192.0.2.4 - - [24/May/2023:13:15:30 +0000] "GET /wp-login.php HTTP/1.1" 200 167 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" 2. 192.0.2.4 - - [24/May/2023:13:15:31 +0000] "POST /wp-login.php HTTP/1.1" 302 152 "http://www.example.com/wp-login.php" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" 3. 192.0.2.4 - - [24/May/2023:13:15:32 +0000] "GET /wp-admin/install.php HTTP/1.1" 200 125 "http://www.example.com/wp-admin/" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" Based on this information, which of the following statements are correct? A: The attacker was unable to compromise the Wordpress login page but was successful in accessing the installation page. B: The attacker attempted to login to a Wordpress site and, despite the login failing, was able to access the Wordpress installation page. C: The attacker was attempting a dictionary attack on the Wordpress site and accessed the Wordpress installation page. D: The logs indicate that the attacker was able to compromise the Wordpress login and directly access the installation page. E: The attacker attempted to login to a Wordpress site, succeeded, and then tried to access the Wordpress installation page.
	Medium Network Traffic Anomaly Network Traffic Analysis Network Protocols Dns Traffic Analysis Network Anomaly Detection	2 mins Cyber Security	Solve
You are a cybersecurity engineer working on a network traffic analysis case. You have been given the following set of observations from network logs of the past 24 hours: - Observation 1: 1,000,000 DNS requests were recorded, 50% more than the usual daily traffic. - Observation 2: 85% of these DNS requests have the same subdomain but different domain names. - Observation 3: For each of these DNS requests, an HTTP POST request follows immediately. - Observation 4: No other significant anomalies were detected in the system logs. Given these observations, what would you suspect is happening? A: The network is experiencing a DNS amplification attack B: There is a misconfiguration in the DNS settings C: The system is the source of a SYN flood attack D: A fast-flux DNS network is in operation E: The system is infected with a DNS tunneling based malware
	Medium SQL Log Analysis SQL Injection Log Analysis Sql Injection Pattern Recognition	2 mins Cyber Security	Solve
You are investigating a possible SQL injection attack on your company's web application. You found the following entries in the HTTP server logs: Note that each log line contains the following information: IP Address - Timestamp - Request URI - Request Status - Response Size Based on the log entries, which of the following statements are correct? A: The attacker logged in successfully but failed to execute the SQL injection. B: The attacker failed in the SQL injection attack. C: The attacker failed to login but successfully accessed the admin page. D: The attacker performed a successful SQL injection attack that dumped all product information. E: The attacker was unsuccessful in both the SQL injection attack and the login attempt.
	Medium Misappropriation Post-Migration DNS Management Infrastructure Migration Subdomain Hijacking	3 mins Cyber Security	Solve
A software company decided to move some of their web services from one cloud provider (Vendor A) to another (Vendor B) for better cost optimization. Initially, their main web application "webapp.company.com" was hosted at IP 192.0.2.1 on Vendor A's infrastructure. As part of this transition, it was moved to IP 203.0.113.1 on Vendor B's setup. Subsequently, a secondary web service previously hosted on "serviceA.company.com" at IP 192.0.2.2 (Vendor A), was migrated and re-hosted at "serviceB.company.com" at IP 203.0.113.2 (Vendor B). A month post-migration, the SEO team reported an unexpected spike in organic traffic to the "company.com" domain. Upon investigating, the IT team noticed unusual activity related to "serviceA.company.com" in the server access logs, including successful HTTP 200 responses from several requests. A suspicious HTTPS GET request, `GET /explicit-content.html HTTP/1.1`, was also recorded. Running `dig +short serviceA.company.com` returned IP address 198.51.100.1. Cross-checking this information with the company's DNS records revealed: Based on the details provided, identify the probable cause for the unexpected increase in organic traffic: A: The company failed to delete the DNS "A" record for "serviceB.company.com" before migration on vendor A. B: The company failed to delete the DNS "A" record for "serviceA.company.com" after migration. C: The company did not configure DNS record for webapp.company.com properly on Vendor B's platform. D: The DNS configuration for serviceB.company.com is incorrect post migration

	🧐 Question	🔧 Skill	💪 Difficulty	⌛ Time
	BGP Path Selection BGP Configuration BGP Troubleshooting Bgp Configuration Route Maps	CISCO	Medium	2 mins	Solve
You are a senior network engineer analyzing a BGP configuration issue in a Cisco router. The router is receiving multiple routes to a particular network, 192.168.100.0/24, from different BGP peers. Your task is to ensure that the router always prefers the path through the neighbor 10.10.10.1, irrespective of other path attributes like AS path length, MED, or local preference. Currently, the BGP configuration includes several route maps and prefix lists but doesn't enforce this specific requirement. Given this scenario, which of the following additions to the BGP configuration would ensure that the route through 10.10.10.1 is always preferred? A: Apply a route map to neighbor 10.10.10.1 setting a lower MED value for 192.168.100.0/24. B: Set a higher local preference for routes received from 10.10.10.1 using a route map. C: Use a prefix list to filter all routes to 192.168.100.0/24 except those from 10.10.10.1. D: Implement an AS path access list to prepend fake AS numbers to routes from other neighbors. E: Modify the existing route maps to set a higher weight for routes from 10.10.10.1. F: Adjust the BGP router ID to a lower value than that of the other BGP peers.
	OSPF Inter-Area Route Filtering OSPF Configuration Route Summarization Routing Control	CISCO	Medium	3 mins	Solve
In a large service provider network, five OSPF areas are configured: Area 0 (Backbone), Area 1, Area 2, Area 3, and Area 4. Area 1 is a normal area, Area 2 is configured as a stub area, Area 3 is a totally stubby area, and Area 4 is an NSSA (Not So Stubby Area). Each area has multiple routers and networks. Router X in Area 1 has an external route (E2) to the network 172.30.0.0/16 and is connected to Area 0. Router Y in Area 2 summarizes its internal routes to 192.168.0.0/18. Router Z in Area 3 has a default route to Area 0 and an external route to 10.20.0.0/16 redistributed as an N2 route in Area 4. Given this configuration, which of the following statements is true when a packet is routed from a network in Area 4 to 172.30.0.0/16? A: The packet will be dropped because NSSA does not allow external routes to be advertised into the area. B: The packet will be routed to Router X via Area 1, as Area 4 allows the redistribution of external routes into the area as N2 LSAs. C: The packet will traverse through Area 0 to reach Router X, which advertises the external route to 172.30.0.0/16. D: The packet will take a default route from Area 3 to Area 0, as Area 3 is a totally stubby area and does not have specific route information for 172.30.0.0/16. E: The packet will be routed directly to Router Y in Area 2 due to the summary route, which incorrectly captures the 172.30.0.0/16 network. F: The packet will be routed to Router Z in Area 3, which has a specific external route to 172.30.0.0/16.
	OSPF Network Analysis OSPF Configuration OSPF Troubleshooting Routing Loops	CISCO	Medium	2 mins	Solve
As a senior network engineer, you are investigating an issue in an OSPF (Open Shortest Path First) network. The network consists of various routers configured in multiple areas, with Area 0 as the backbone. Recently, intermittent routing loops and instability have been reported. Upon reviewing the configurations and logs, you notice the following key points: 1. Area 0 is functioning normally with stable LSA (Link State Advertisement) exchanges. 2. A non-backbone area (Area 1) is showing frequent LSA refreshes and topology changes. 3. Routers in Area 1 have multiple OSPF neighbors, including an ABR (Area Border Router) connecting to Area 0. 4. The ‘show ip ospf database’ command reveals numerous LSA types 3 (Summary LSAs) and 5 (External LSAs) being frequently updated in Area 1. Which of the following actions is most likely to resolve the routing instability and loops in Area 1? A: Redistribute static routes into the OSPF process on the ABR, focusing on stabilizing Area 1. B: Configure Area 1 as a stub area to reduce the number of Type 5 LSAs. C: Implement route summarization on the ABR between Area 0 and Area 1. D: Increase the SPF algorithm calculation timers to reduce LSA refresh frequency. E: Convert Area 1 to a Totally Stubby Area to filter out Type 3 and Type 5 LSAs. F: Adjust OSPF priorities on routers in Area 1 to elect a more stable DR (Designated Router).
	Routing Protocols Configuration Routing Configuration OSPF EIGRP Network Design	CISCO	Medium	2 mins	Solve
A network engineer is configuring a new routing protocol setup for a large enterprise network. The network has multiple subnets and requires both OSPF and EIGRP protocols for different segments. The primary data center uses OSPF with an OSPF area ID of 0, while branch offices use EIGRP with an autonomous system number of 100. The network requirements are as follows: 1. OSPF must have a router ID of 10.10.10.10. 2. EIGRP needs to be optimized for low bandwidth consumption. 3. Redistribution between OSPF and EIGRP is required, with route filtering to prevent routing loops. 4. OSPF areas other than area 0 will be stub areas. Considering these requirements, which of the following configurations is most appropriate? A: Configure OSPF area 0 with router ID 10.10.10.10 and use default EIGRP settings. B: Configure EIGRP with bandwidth optimization and OSPF with router ID 10.10.10.10, without route redistribution. C: Set OSPF area 0 with router ID 10.10.10.10, configure EIGRP for bandwidth optimization, and enable mutual redistribution with proper route filtering. D: Use OSPF with area ID 100 and EIGRP with autonomous system 0, with mutual redistribution. E: Configure OSPF in all areas as stub and set EIGRP to use the lowest bandwidth setting. F: Implement OSPF with router ID 10.10.10.10 and EIGRP with bandwidth optimization, but without any redistribution or filtering.
	Mac address and IP on router hop Routers Switches Mac Address Resolution Packet Forwarding	Computer Networks	Medium	2 mins	Solve
Refer to the following exhibit: Host A is sending a packet to Host B. 1. What is the source and destination MAC address at point PA? 2. What is the source and destination IP address at point PB? // Option A PA: source MAC - Mac-A PA: destination MAC - Mac-B PB: source IP - 192.168.1.1 PB: destination IP - 192.168.3.1 // Option B PA: source MAC - Mac-A PA: destination MAC - Mac-RA PB: source IP - 192.168.3.3 PB: destination IP - 192.168.3.1 // Option C PA: source MAC - Mac-A PA: destination MAC - Mac-B PB: source IP - 192.168.3.3 PB: destination IP - 192.168.3.1 // Option D PA: source MAC - Mac-A PA: destination MAC - Mac-RA PB: source IP - 192.168.1.1 PB: destination IP - 192.168.3.1
	MX Record, DMARC and Email Authentication DNS MX Records DMARC SPF DKIM	Computer Networks	Easy	2 mins	Solve
You work as a network administrator for a company, "example.com", that recently started experiencing issues with email spoofing. To mitigate the problem, you decide to implement DMARC (Domain-based Message Authentication, Reporting & Conformance) in addition to existing SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) records. Your current DNS records for example.com include the following: - MX 10 mail.example.com (IP address 203.0.113.10) - TXT "v=spf1 ip4:203.0.113.10 -all" - TXT "v=DKIM1; k=rsa; p=public-key-here" You add the following DMARC record: - TXT "_dmarc.example.com" "v=DMARC1; p=quarantine; pct=100; rua=mailto:report@example.com" After implementing the DMARC record, an external mail server sends an email to your domain. The email passes the SPF and DKIM checks but fails the DMARC check. What will likely happen to the email? A: The email will be accepted and delivered to the recipient's inbox. B: The email will be rejected and returned to the sender as undeliverable. C: The email might be delivered to the recipient's spam or junk folder. D: The email will be accepted, but a report will be sent to the sender. E: The email will be silently discarded, and the sender will not be notified.
	Remote network resources Gateway Routing protocols Ospf Routing Network Connectivity	Computer Networks	Medium	3 mins	Solve
Review the following exhibit: Angelina noticed that the computers on 192.168.10.0/24 network can ping their default gateway. But they found that these computers cannot connect to any remote network resources. Which of the following is the most likely reason for this?
	SSL Certificate Expiry SSL/TLS Network Security Ssl/tls	Computer Networks	Medium	2 mins	Solve
You are a network administrator for an e-commerce company. The company's online store allows customers to browse products and make purchases securely over the internet. The online store uses SSL/TLS for secure communication. You receive reports that some customers are seeing a security warning in their web browsers when trying to access the online store. Upon investigation, you discover the following information: - The SSL certificate used by the online store's web server is valid for one year and is due to expire in two days. - The web server is configured to automatically redirect HTTP traffic to HTTPS. - The SSL certificate was issued by a trusted certificate authority (CA), and all major web browsers have the CA's root certificate in their trusted certificate stores. - The SSL certificate includes the correct domain name for the online store. Given the above information, which of the following steps should be taken to resolve the issue and prevent customers from seeing the security warning? A: Extend the validity of the current SSL certificate by one year. B: Obtain a new SSL certificate from the same CA and install it on the web server before the current certificate expires. C: Remove the automatic redirect from HTTP to HTTPS on the web server. D: Ask customers to ignore the security warning and proceed to the online store. E: Replace the SSL certificate with a self-signed certificate.
	Cookie Security Analysis Web Application Security HTTP Cookies Cross-Domain Communication	Cyber Security	Medium	2 mins	Solve
You are a cybersecurity officer and a new third-party payment gateway is integrated into your company's e-commerce website. The payment gateway API is hosted on a different domain (pay-gateway.com) than your e-commerce site (my-ecommerce.com). You receive some reports that users are unable to complete their transactions intermittently. You obtain the following set of HTTP cookies from an affected user: 1. user_session=1; Domain=my-ecommerce.com; Path=/; Secure; HttpOnly 2. payment_session=xyz123; Domain=pay-gateway.com; Path=/; Secure; HttpOnly 3. cart_id=abcd1234; Domain=my-ecommerce.com; Path=/; Secure 4. csrf_token=efgh5678; Domain=my-ecommerce.com; Path=/; Secure 5. currency=USD; Domain=my-ecommerce.com; Path=/; 6. same_site_test=1; Domain=my-ecommerce.com; Path=/; Secure; SameSite=None 7. payment_verification=; Domain=my-ecommerce.com; Path=/; Secure; HttpOnly Which of the following configuration modifications would likely solve the intermittent transaction failure issue? A: Set SameSite=Strict attribute on all cookies. B: Set "SameSite=None; Secure" attribute on the payment_session cookie. C: Change the Domain attribute of payment_session cookie to my-ecommerce.com. D: Set HttpOnly attribute on cart_id and csrf_token cookies. E: Remove Secure attribute from user_session cookie.
	Security Incident Log Analysis Security Pattern Recognition	Cyber Security	Medium	2 mins	Solve
You are the security analyst for a company and are currently investigating a security incident. You found the following log entries in your HTTP server logs, which appear to be linked to the incident: 1. 192.0.2.4 - - [24/May/2023:13:15:30 +0000] "GET /wp-login.php HTTP/1.1" 200 167 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" 2. 192.0.2.4 - - [24/May/2023:13:15:31 +0000] "POST /wp-login.php HTTP/1.1" 302 152 "http://www.example.com/wp-login.php" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" 3. 192.0.2.4 - - [24/May/2023:13:15:32 +0000] "GET /wp-admin/install.php HTTP/1.1" 200 125 "http://www.example.com/wp-admin/" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" Based on this information, which of the following statements are correct? A: The attacker was unable to compromise the Wordpress login page but was successful in accessing the installation page. B: The attacker attempted to login to a Wordpress site and, despite the login failing, was able to access the Wordpress installation page. C: The attacker was attempting a dictionary attack on the Wordpress site and accessed the Wordpress installation page. D: The logs indicate that the attacker was able to compromise the Wordpress login and directly access the installation page. E: The attacker attempted to login to a Wordpress site, succeeded, and then tried to access the Wordpress installation page.
	Network Traffic Anomaly Network Traffic Analysis Network Protocols Dns Traffic Analysis Network Anomaly Detection	Cyber Security	Medium	2 mins	Solve
You are a cybersecurity engineer working on a network traffic analysis case. You have been given the following set of observations from network logs of the past 24 hours: - Observation 1: 1,000,000 DNS requests were recorded, 50% more than the usual daily traffic. - Observation 2: 85% of these DNS requests have the same subdomain but different domain names. - Observation 3: For each of these DNS requests, an HTTP POST request follows immediately. - Observation 4: No other significant anomalies were detected in the system logs. Given these observations, what would you suspect is happening? A: The network is experiencing a DNS amplification attack B: There is a misconfiguration in the DNS settings C: The system is the source of a SYN flood attack D: A fast-flux DNS network is in operation E: The system is infected with a DNS tunneling based malware
	SQL Log Analysis SQL Injection Log Analysis Sql Injection Pattern Recognition	Cyber Security	Medium	2 mins	Solve
You are investigating a possible SQL injection attack on your company's web application. You found the following entries in the HTTP server logs: Note that each log line contains the following information: IP Address - Timestamp - Request URI - Request Status - Response Size Based on the log entries, which of the following statements are correct? A: The attacker logged in successfully but failed to execute the SQL injection. B: The attacker failed in the SQL injection attack. C: The attacker failed to login but successfully accessed the admin page. D: The attacker performed a successful SQL injection attack that dumped all product information. E: The attacker was unsuccessful in both the SQL injection attack and the login attempt.
	Misappropriation Post-Migration DNS Management Infrastructure Migration Subdomain Hijacking	Cyber Security	Medium	3 mins	Solve
A software company decided to move some of their web services from one cloud provider (Vendor A) to another (Vendor B) for better cost optimization. Initially, their main web application "webapp.company.com" was hosted at IP 192.0.2.1 on Vendor A's infrastructure. As part of this transition, it was moved to IP 203.0.113.1 on Vendor B's setup. Subsequently, a secondary web service previously hosted on "serviceA.company.com" at IP 192.0.2.2 (Vendor A), was migrated and re-hosted at "serviceB.company.com" at IP 203.0.113.2 (Vendor B). A month post-migration, the SEO team reported an unexpected spike in organic traffic to the "company.com" domain. Upon investigating, the IT team noticed unusual activity related to "serviceA.company.com" in the server access logs, including successful HTTP 200 responses from several requests. A suspicious HTTPS GET request, `GET /explicit-content.html HTTP/1.1`, was also recorded. Running `dig +short serviceA.company.com` returned IP address 198.51.100.1. Cross-checking this information with the company's DNS records revealed: Based on the details provided, identify the probable cause for the unexpected increase in organic traffic: A: The company failed to delete the DNS "A" record for "serviceB.company.com" before migration on vendor A. B: The company failed to delete the DNS "A" record for "serviceA.company.com" after migration. C: The company did not configure DNS record for webapp.company.com properly on Vendor B's platform. D: The DNS configuration for serviceB.company.com is incorrect post migration

Get started for free

Preview questions

With Adaface, we were able to optimise our initial screening process by upwards of 75%, freeing up precious time for both hiring managers and our talent acquisition team alike!

Brandon Lee, Head of People, Love, Bonito

It's very easy to share assessments with candidates and for candidates to use. We get good feedback from candidates about completing the tests. Adaface are very responsive and friendly to deal with.

Kirsty Wood, Human Resources, WillyWeather

We were able to close 106 positions in a record time of 45 days! Adaface enables us to conduct aptitude and psychometric assessments seamlessly. My hiring managers have never been happier with the quality of candidates shortlisted.

Amit Kataria, CHRO, Hanu

We evaluated several of their competitors and found Adaface to be the most compelling. Great library of questions that are designed to test for fit rather than memorization of algorithms.

Swayam Narain, CTO, Affable

Why you should use Pre-employment CISCO Security Online Test?

The CISCO Security Online Test makes use of scenario-based questions to test for on-the-job skills as opposed to theoretical knowledge, ensuring that candidates who do well on this screening test have the relavant skills. The questions are designed to covered following on-the-job aspects:

Ability to configure and manage CISCO Firewall devices
Knowledge of CISCO IPS/IDS technology and its implementation
Understanding of CISCO VPN technology and its configuration
Familiarity with Network Security Concepts and principles
Proficiency in Access Control and Identity Management
Ability to develop and enforce Security Policies
Expertise in CISCO Security Appliances
Understanding of CISCO Security Solutions and their implementation
Knowledge of Network Threats and Vulnerabilities

Once the test is sent to a candidate, the candidate receives a link in email to take the test. For each candidate, you will receive a detailed report with skills breakdown and benchmarks to shortlist the top candidates from your pool.

What topics are covered in the CISCO Security Online Test?

CISCO Firewall: CISCO Firewall focuses on the implementation and configuration of CISCO firewalls, which are crucial for protecting networks from unauthorized access and potential attacks. This skill measures an individual's ability to design, deploy, and troubleshoot CISCO firewall solutions.

CISCO IPS/IDS: CISCO IPS/IDS refers to Intrusion Prevention Systems (IPS) and Intrusion Detection Systems (IDS) offered by CISCO. This skill assesses a candidate's knowledge of deploying, configuring, and monitoring CISCO IPS/IDS devices to detect and prevent network threats and attacks.

CISCO VPN: CISCO VPN (Virtual Private Network) involves the secure connection of remote networks or individual devices over a public network. This skill evaluates an individual's expertise in designing, configuring, and managing CISCO VPN solutions, ensuring secure and encrypted communication between different networks or devices.

Network Security Concepts: Network Security Concepts refers to the fundamental principles and practices of securing computer networks. This skill evaluates a candidate's understanding of network protocols, network design best practices, and security mechanisms to safeguard networks from unauthorized access, data breaches, and other threats.

Access Control and Identity Management: Access Control and Identity Management focuses on controlling user access to network resources and managing user identities. This skill assesses an individual's knowledge of authentication, authorization, and accounting (AAA) protocols, as well as the implementation of access control policies and user identity management systems.

Security Policies and Best Practices: Security Policies and Best Practices involve developing and implementing security policies, procedures, and guidelines for safeguarding networks, systems, and data. This skill measures a candidate's understanding of industry best practices, compliance requirements, and risk assessment methodologies to establish effective security measures.

CISCO Security Appliances: CISCO Security Appliances encompasses the deployment and management of various CISCO network security appliances, such as firewalls, intrusion detection systems, and VPN concentrators. This skill evaluates an individual's proficiency in configuring, troubleshooting, and optimizing CISCO security appliance solutions.

CISCO Security Solutions: CISCO Security Solutions involves the integration and deployment of comprehensive security solutions offered by CISCO. This skill assesses a candidate's ability to design, implement, and manage end-to-end security architectures, combining multiple CISCO security technologies to address complex security challenges.

Network Threats and Vulnerabilities: Network Threats and Vulnerabilities refer to potential risks and weaknesses that can compromise the security of computer networks. This skill evaluates an individual's understanding of common network threats, such as malware, phishing, and Denial-of-Service (DoS) attacks, along with the ability to identify vulnerabilities and implement mitigation strategies.

Full list of covered topics

The actual topics of the questions in the final test will depend on your job description and requirements. However, here's a list of topics you can expect the questions for CISCO Security Online Test to be based on.

Security Threats

Security Concepts

Firewall Technologies

CISCO Firewall Configuration

Firewall Access Control Methods

CISCO IPS/IDS Fundamentals

IPS/IDS Configuration and Management

Virtual Private Networks (VPNs)

Types of VPNs

VPN Security Protocols

CISCO VPN Configuration

Network Security Concepts

Secure Network Design

Perimeter Security

Internal and External Threats

Access Control Models

Identity Management

Authentication and Authorization

Security Policies

Security Policy Framework

Security Best Practices

CISCO Security Appliances

Advanced Firewall Features

Intrusion Prevention Systems

Intrusion Detection Systems

CISCO PIX Firewall

CISCO ASA Firewall

CISCO IOS Firewall

CISCO VPN Concentrator

CISCO Security Manager

CISCO Security Device Manager

CISCO Security Solutions

CISCO Security Framework

CISCO Security Architecture

CISCO Security Services

CISCO Security Lifecycle

Network Threats

Common Malware

Denial-of-Service Attacks

Social Engineering Attacks

Wireless Security

Vulnerabilities Assessment and Management

Network Exploitation

Web Application Security

Mobile Security

Cloud Security

Physical Security

Incident Response

Risk Assessment

Disaster Recovery Planning

Legal and Ethical Considerations

Compliance and Regulatory Requirements

What roles can I use the CISCO Security Online Test for?

CISCO Network Administrator
CISCO Security Analyst
CISCO Network Security Specialist
CISCO Network Architect

How is the CISCO Security Online Test customized for senior candidates?

For intermediate/ experienced candidates, we customize the assessment questions to include advanced topics and increase the difficulty level of the questions. This might include adding questions on topics like

Ability to analyze and troubleshoot network security issues
Knowledge of network protocols and their security implications
Proficiency in configuring and managing intrusion detection systems
Understanding of secure remote access technologies
Experience with implementing secure network architectures
Ability to design and implement secure access control mechanisms
Knowledge of network encryption and authentication techniques
Familiarity with secure logging and auditing practices
Expertise in conducting vulnerability assessments and penetration testing
Understanding of incident response and disaster recovery procedures
Proficiency in evaluating and selecting appropriate security technologies

Preview this test

View sample scorecard

Try the most advanced candidate assessment platform

ChatGPT Protection

Non-googleable Questions

Web Proctoring

IP Proctoring

Webcam Proctoring

MCQ Questions

Coding Questions

Typing Questions

Personality Questions

Custom Questions

Ready-to-use Tests

Custom Tests

Custom Branding

Bulk Invites

Public Links

ATS Integrations

Multiple Question Sets

Custom API integrations

Role-based Access

Priority Support

GDPR Compliance

Screen candidates in 3 easy steps

Pick a test from over 500+ tests

The Adaface test library features 500+ tests to enable you to test candidates on all popular skills- everything from programming languages, software frameworks, devops, logical reasoning, abstract reasoning, critical thinking, fluid intelligence, content marketing, talent acquisition, customer service, accounting, product management, sales and more.

Invite your candidates with 2-clicks

Make informed hiring decisions

Get started for free

Preview questions

Have questions about the CISCO Security Hiring Test?

What is CISCO Security Online Test?

The CISCO Security Online Test is designed to assess the skills and knowledge of professionals in CISCO security technologies. It is used by recruiters to evaluate candidates on their proficiency in network security concepts, CISCO security appliances, and solutions.

Can I combine the CISCO Security Online Test with Network Engineer skills?

Yes, recruiters can request a single custom test with multiple skills. You may consider looking into our Network Engineer Test for more details on how we assess network engineering capabilities.

What types of questions are included in the CISCO Security Online Test?

The test includes 8 multiple-choice questions on CISCO, 4 on computer networks, and 4 on cyber security topics. It covers skills such as CISCO Firewall, CISCO VPN, and network security concepts, making it comprehensive for senior roles.

How to use the CISCO Security Online Test in my hiring process?

We recommend using this test as a pre-screening tool at the beginning of your recruitment process. You can add a link to the assessment in your job post or directly invite candidates by email.

Can I test CISCO security and cyber security together?

Yes, you can test both CISCO security and cyber security together. This combination is beneficial to assess a candidate's overall network security capabilities. Check our Cyber Security Assessment Test for more details.

What are the main security-related tests?

We offer several security-related tests, including:

Can I combine multiple skills into one custom assessment?

Yes, absolutely. Custom assessments are set up based on your job description, and will include questions on all must-have skills you specify. Here's a quick guide on how you can request a custom test.

Do you have any anti-cheating or proctoring features in place?

We have the following anti-cheating features in place:

Non-googleable questions
IP proctoring
Screen proctoring
Web proctoring
Webcam proctoring
Plagiarism detection
Secure browser
Copy paste protection

Read more about the proctoring features.

How do I interpret test scores?

The primary thing to keep in mind is that an assessment is an elimination tool, not a selection tool. A skills assessment is optimized to help you eliminate candidates who are not technically qualified for the role, it is not optimized to help you find the best candidate for the role. So the ideal way to use an assessment is to decide a threshold score (typically 55%, we help you benchmark) and invite all candidates who score above the threshold for the next rounds of interview.

What experience level can I use this test for?

Each Adaface assessment is customized to your job description/ ideal candidate persona (our subject matter experts will pick the right questions for your assessment from our library of 10000+ questions). This assessment can be customized for any experience level.

Does every candidate get the same questions?

Yes, it makes it much easier for you to compare candidates. Options for MCQ questions and the order of questions are randomized. We have anti-cheating/ proctoring features in place. In our enterprise plan, we also have the option to create multiple versions of the same assessment with questions of similar difficulty levels.

I'm a candidate. Can I try a practice test?

No. Unfortunately, we do not support practice tests at the moment. However, you can use our sample questions for practice.

What is the cost of using this test?

You can check out our pricing plans.

Can I get a free trial?

Yes, you can sign up for free and preview this test.

I just moved to a paid plan. How can I request a custom assessment?

Here is a quick guide on how to request a custom assessment on Adaface.

View sample scorecard

Along with scorecards that report the performance of the candidate in detail, you also receive a comparative analysis against the company average and industry standards.

View sample scorecard