Month End Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

CCSK Exam Dumps - Certificate of Cloud Security Knowledge (CCSK v5.0)

Go to page:
Question # 25

CCM: The Architectural Relevance column in the CCM indicates the applicability of the cloud security control to which of the following elements?

A.

Service Provider or Tenant/Consumer

B.

Physical, Network, Compute, Storage, Application or Data

C.

SaaS, PaaS or IaaS

Full Access
Question # 26

Which of the following statements best defines the "authorization" as a component of identity, entitlement, and access management?

A.

The process of specifying and maintaining access policies

B.

Checking data storage to make sure it meets compliance requirements

C.

Giving a third party vendor permission to work on your cloud solution

D.

Establishing/asserting the identity to the application

E.

Enforcing the rules by which access is granted to the resources

Full Access
Question # 27

ENISA: Lock-in is ranked as a high risk in ENISA research, a key underlying vulnerability causing lock in is:

A.

Lack of completeness and transparency in terms of use

B.

Lack of information on jurisdictions

C.

No source escrow agreement

D.

Unclear asset ownership

E.

Audit or certification not available to customers

Full Access
Question # 28

Your SLA with your cloud provider ensures continuity for all services.

A.

False

B.

True

Full Access
Question # 29

What are the encryption options available for SaaS consumers?

A.

Any encryption option that is available for volume storage, object storage, or PaaS

B.

Provider-managed and (sometimes) proxy encryption

C.

Client/application and file/folder encryption

D.

Object encryption Volume storage encryption

Full Access
Question # 30

All assets require the same continuity in the cloud.

A.

False

B.

True

Full Access
Question # 31

What is the most significant security difference between traditional infrastructure and cloud computing?

A.

Management plane

B.

Intrusion detection options

C.

Secondary authentication factors

D.

Network access points

E.

Mobile security configuration options

Full Access
Question # 32

Select the best definition of “compliance” from the options below.

A.

The development of a routine that covers all necessary security measures.

B.

The diligent habits of good security practices and recording of the same.

C.

The timely and efficient filing of security reports.

D.

The awareness and adherence to obligations, including the assessment and prioritization of corrective actions deemed necessary and appropriate.

E.

The process of completing all forms and paperwork necessary to develop a defensible paper trail.

Full Access
Go to page: