최신 CCSK 무료덤프 - Cloud Security Alliance Certificate of Cloud Security Knowledge (v4.0)

문제1

Which of the following encryption methods would be utilized when object storage is used as the back-end for an application?

A. Database encryption

B. Object encryption

C. Client/application encryption

D. Asymmetric encryption

E. Media encryption

정답: C

문제2

What are the most important practices for reducing vulnerabilities in virtual machines (VMs) in a cloud environment?

A. Encryption for data at rest and software bill of materials

B. Disabling unnecessary VM services and using containers

C. Network isolation and monitoring

D. Using secure base images, patch and configuration management

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제3

Which of the following statements is true in regards to Data Loss Prevention (DLP)?

A. DLP can provide options for how data found in violation of a policy can be handled.

B. DLP never provides options for how data found in violation of a policy can be handled.

C. DLP can provide options for quickly deleting all of the data stored in a cloud environment.

D. DLP can classify all data in a storage repository.

E. DLP can provide options for where data is stored.

정답: A

문제4

Which approach is commonly used by organizations to manage identities in the cloud due to the complexity of scaling across providers?

A. Federation

B. Decentralization

C. Centralization

D. Outsourcing

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제5

Which of the following best describes an aspect of PaaS services in relation to network security controls within a cloud environment?

A. They do not interact with the VNet/VPC's network security controls

B. They often inherit the network security controls of the underlying VNet/VPC

C. They override the VNet/VPC's network security controls by default

D. They require manual configuration of network security controls, separate from the VNet/VPC

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제6

What is the newer application development methodology and philosophy focused on automation of application development and deployment?

A. DevOps

B. Agile

C. SecDevOps

D. Scrum

E. BusOps

정답: A

문제7

Which aspect of cloud architecture ensures that a system can handle growing amounts of work efficiently?

A. Scalability

B. Reliability

C. Performance

D. Security

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제8

Which cloud service model requires the customer to manage the operating system and applications?

A. Platform as a Service (PaaS)

B. Software as a Service (SaaS)

C. Network as a Service (NaaS)

D. Infrastructure as a Service (laaS)

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제9

What is known as the interface used to connect with the metastructure and configure the cloud environment?

A. Administrative access

B. Single sign-on

C. Cloud dashboard

D. Management plane

E. Identity and Access Management

정답: D

문제10

What are the primary security responsibilities of the cloud provider in compute virtualizations?

A. Enforce isolation and configure the security settings

B. Enforce isolation and maintain a secure virtualization infrastructure

C. Enforce isolation and monitor and log workloads

D. Monitor and log workloads and configure the security settings

E. Maintain a secure virtualization infrastructure and configure the security settings

정답: B

문제11

CCM: A hypothetical start-up company called "ABC" provides a cloud based IT management solution. They are growing rapidly and therefore need to put controls in place in order to manage any changes in their production environment. Which of the following Change Control & Configuration Management production environment specific control should they implement in this scenario?

A. Policies and procedures shall be established, and supporting business processes and technical measures implemented, to restrict the installation of unauthorized software on organizationally-owned ormanaged user end-point devices (e.g. issued workstations, laptops, and mobile devices) and IT infrastructure network and systems components.

B. Policies and procedures shall be established for managing the risks associated with applying changes to business-critical or customer (tenant)-impacting (physical and virtual) applications and system-system interface (API) designs and configurations, infrastructure network and systems components.

C. All cloud-based services used by the company's mobile devices or BYOD shall be pre-approved for usage and the storage of company business data.

D. None of the above

정답: B

문제12

What is true of a workload?

A. It does not require a hardware stack

B. It is configured for specific, established tasks

C. It is always a virtual machine

D. It must be containerized

E. It is a unit of processing that consumes memory

정답: E

문제13

In federated identity management, what role does the identity provider (IdP) play in relation to the relying party?

A. The relying party makes assertions to the IdP about user authorizations.

B. The IdP relies on the relying party to authenticate and authorize users.

C. The IdP and relying party have no direct trust relationship.

D. The IdP makes assertions to the relying party after building a trust relationship.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제14

CCM: In the CCM tool, "Encryption and Key Management" is an example of which of the following?

A. Domain

B. Control Specification

C. Risk Impact

정답: A

문제15

Any given processor and memory will nearly always be running multiple workloads, often from different tenants.

A. True

B. False

정답: A

최신 CCSK 무료덤프 - Cloud Security Alliance Certificate of Cloud Security Knowledge (v4.0)

우리와 연락하기

유용한 링크

최신 업데이트