CCSK無料問題集「Cloud Security Alliance Certificate of Cloud Security Knowledge (v4.0)」

質問 1

Which cloud-based service model enables companies to provide client-based access for partners to databases or applications?

（A）Platform-as-a-service (PaaS)

（B）Desktop-as-a-service (DaaS)

（C）Software-as-a-service (SaaS)

（D）Identity-as-a-service (IDaaS)

（E）Infrastructure-as-a-service (IaaS)

正解：A 解答を投票する

質問 2

What are the primary security responsibilities of the cloud provider in the management infrastructure?

（A）Configuring second factor authentication across the network

（B）Building and properly configuring a secure network infrastructure

（C）Properly configuring the deployment of the virtual network, especially the firewalls

（D）Providing as many API endpoints as possible for custom access and configurations

（E）Properly configuring the deployment of the virtual network, except the firewalls

正解：E 解答を投票する

質問 3

CCM: Cloud Controls Matrix (CCM) is a completely independent cloud
assessment toolkit that does not map any existing standards.

（A）False

（B）True

正解：A 解答を投票する

質問 4

How is encryption managed on multi-tenant storage?

（A）Multiple keys per data owner

（B）Single key for all data owners

（C）One key per data owner

（D）The answer could be A, B, or C depending on the provider

（E）C for data subject to the EU Data Protection Directive; B for all others

正解：C 解答を投票する

質問 5

If the management plane has been breached, you should confirm the templates/configurations for your infrastructure or applications have not also been compromised.

（A）False

（B）True

正解：A 解答を投票する

質問 6

Any given processor and memory will nearly always be running multiple workloads, often from different tenants.

（A）False

（B）True

正解：B 解答を投票する

質問 7

If there are gaps in network logging data, what can you do?

（A）Nothing. The cloud provider must make the information available.

（B）You can instrument the technology stack with your own logging.

（C）Nothing. There are simply limitations around the data that can be logged in the cloud.

（D）Ask the cloud provider to open more ports.

（E）Ask the cloud provider to close more ports.

正解：B 解答を投票する

質問 8

Which communication methods within a cloud environment must be exposed for partners or consumers to access database information using a web application?

（A）Extensible Markup Language (XML)

（B）Resource Description Framework (RDF)

（C）Application Binary Interface (ABI)

（D）Application Programming Interface (API)

（E）Software Development Kits (SDKs)

正解：D 解答を投票する

質問 9

CCM: The following list of controls belong to which domain of the CCM?
GRM 06 - Policy GRM 07 - Policy Enforcement GRM 08 - Policy Impact on Risk Assessments GRM 09 - Policy Reviews GRM 10 - Risk Assessments GRM 11 - Risk Management Framework

（A）Governance and Risk Management

（B）Governance and Retention Management

（C）Governing and Risk Metrics

正解：A 解答を投票する

質問 10

When deploying Security as a Service in a highly regulated industry or environment, what should both parties agree on in advance and include in the SLA?

（A）The regulations that are pertinent to the contract and how to circumvent them.

（B）The duration of time that a security violation can occur before the client begins assessing regulatory fines.

（C）The metrics defining the service level required to achieve regulatory objectives.

（D）The cost per incident for security breaches of regulated information.

（E）The type of security software which meets regulations and the number of licenses that will be needed.

正解：C 解答を投票する

CCSK 無料問題集「Cloud Security Alliance Certificate of Cloud Security Knowledge (v4.0)」

弊社を連絡する

関連リンク

トップ試験