Special Summer Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

CCSK Exam Dumps - Certificate of Cloud Security Knowledge (CCSKv5.0)

Go to page:
Question # 25

CCM: A hypothetical start-up company called "ABC" provides a cloud based IT management solution. They are growing rapidly and therefore need to put controls in place in order to manage any changes in

their production environment. Which of the following Change Control & Configuration Management production environment specific control should they implement in this scenario?

A.

Policies and procedures shall be established for managing the risks associated with applying changes to business-critical or customer (tenant)-impacting (physical and virtual) applications and system-

system interface (API) designs and configurations, infrastructure network and systems components.

B.

Policies and procedures shall be established, and supporting business processes and technical measures implemented, to restrict the installation of unauthorized software on organizationally-owned or

managed user end-point devices (e.g. issued workstations, laptops, and mobile devices) and IT infrastructure network and systems components.

C.

All cloud-based services used by the company's mobile devices or BYOD shall be pre-approved for usage and the storage of company business data.

D.

None of the above

Full Access
Question # 26

Which of the following is NOT normally a method for detecting and preventing data migration into the cloud?

A.

Intrusion Prevention System

B.

URL filters

C.

Data Loss Prevention

D.

Cloud Access and Security Brokers (CASB)

E.

Database Activity Monitoring

Full Access
Question # 27

CCM: In the CCM tool, “Encryption and Key Management” is an example of which of the following?

A.

Risk Impact

B.

Domain

C.

Control Specification

Full Access
Question # 28

When investigating an incident in an Infrastructure as a Service (IaaS) environment, what can the user investigate on their own?

A.

The CSP server facility

B.

The logs of all customers in a multi-tenant cloud

C.

The network components controlled by the CSP

D.

The CSP office spaces

E.

Their own virtual instances in the cloud

Full Access
Question # 29

How can the use of third-party libraries introduce supply chain risks in software development?

A.

They are usually open source and do not require vetting

B.

They might contain vulnerabilities that can be exploited

C.

They fail to integrate properly with existing continuous integration pipelines

D.

They might increase the overall complexity of the codebase

Full Access
Question # 30

Which statement best describes the impact of Cloud Computing on business continuity management?

A.

A general lack of interoperability standards means that extra focus must be placed on the security aspects of migration between Cloud providers.

B.

The size of data sets hosted at a Cloud provider can present challenges if migration to another provider becomes necessary.

C.

Customers of SaaS providers in particular need to mitigate the risks of application lock-in.

D.

Clients need to do business continuity planning due diligence in case they suddenly need to switch providers.

E.

Geographic redundancy ensures that Cloud Providers provide highly available services.

Full Access
Question # 31

ENISA: A reason for risk concerns of a cloud provider being acquired is:

A.

Arbitrary contract termination by acquiring company

B.

Resource isolation may fail

C.

Provider may change physical location

D.

Mass layoffs may occur

E.

Non-binding agreements put at risk

Full Access
Question # 32

Which of the following events should be monitored according to CIS AWS benchmarks?

A.

Regular file backups

B.

Data encryption at rest

C.

Successful login attempts

D.

Unauthorized API calls

Full Access
Go to page: