CCSK Exam Dumps - Certificate of Cloud Security Knowledge (CCSK v5.0)

Service Provider or Tenant/Consumer

Physical, Network, Compute, Storage, Application or Data

SaaS, PaaS or IaaS

The process of specifying and maintaining access policies

Checking data storage to make sure it meets compliance requirements

Giving a third party vendor permission to work on your cloud solution

Establishing/asserting the identity to the application

Enforcing the rules by which access is granted to the resources

Lack of completeness and transparency in terms of use

Lack of information on jurisdictions

No source escrow agreement

Unclear asset ownership

Audit or certification not available to customers

False

True

Any encryption option that is available for volume storage, object storage, or PaaS

Provider-managed and (sometimes) proxy encryption

Client/application and file/folder encryption

Object encryption Volume storage encryption

False

True

Management plane

Intrusion detection options

Secondary authentication factors

Network access points

Mobile security configuration options

The development of a routine that covers all necessary security measures.

The diligent habits of good security practices and recording of the same.

The timely and efficient filing of security reports.

The awareness and adherence to obligations, including the assessment and prioritization of corrective actions deemed necessary and appropriate.

The process of completing all forms and paperwork necessary to develop a defensible paper trail.