Securing Email with Cisco Email Security Appliance (SESA) — Question 101

A list of company executives is routinely being spoofed, which puts the company at risk of malicious email attacks. An administrator must ensure that executive messages are originating from legitimate sending addresses. Which two steps must be taken to accomplish this task? (Choose two.)

Answer options

• A. Create an incoming content filter with SPF detection.
• B. Create a content dictionary including a list of the names that are being spoofed.
• C. Enable the Forged Email Detection feature under Security Settings.
• D. Enable DMARC feature under Mail Policies.
• E. Create an incoming content filter with the Forged Email Detection condition.

Correct answer: B, E

Explanation

The correct steps are B and E. Creating a content dictionary helps identify specific names that are being spoofed, while setting an incoming content filter with the Forged Email Detection condition directly addresses potential forgery. Options A, C, and D do not specifically target the issue of spoofed executive emails as effectively as the correct answers.