• Home
  • Articles
  • CCSK Dumps for Pass Guaranteed - Pass CCSK Exam 2022 [Q144-Q166]

CCSK Dumps for Pass Guaranteed - Pass CCSK Exam 2022 [Q144-Q166]

Share

CCSK Dumps for Pass Guaranteed - Pass CCSK Exam 2022

CCSK Exam Dumps - Try Best CCSK Exam Questions from Training Expert PassExamDumps

NEW QUESTION 144
What is true of security as it relates to cloud network infrastructure?

  • A. You should apply cloud firewalls on a per-network basis.
  • B. You should implement a default deny with cloud firewalls.
  • C. You should implement a default allow with cloud firewalls and then restrict as necessary.
  • D. You should always open traffic between workloads in the same virtual subnet for better visibility.
  • E. You should deploy your cloud firewalls identical to the existing firewalls.

Answer: B

 

NEW QUESTION 145
Which of the following is NOT part of Risk management process?

  • A. Dealing
  • B. Assessing
  • C. Responding
  • D. Framing

Answer: A

Explanation:
The risk-management process has four components
1. Framing risk
2. Assessing risk
3. Responding to risk
4. Monitoring risk

 

NEW QUESTION 146
What is the best way to ensure that all data has been removed from a public cloud environment including all media such as back-up tapes?

  • A. Maintaining customer managed key management and revoking or deleting keys from the key management system to prevent the data from being accessed again.
  • B. Keep the keys stored on the client side so that they are secure and so that the users have the ability to delete their own data.
  • C. Practice Integration of Duties (IOD) so that everyone is able to delete the encrypted data.
  • D. Both B and D.
  • E. Allowing the cloud provider to manage your keys so that they have the ability to access and delete the data from the main and back-up storage.

Answer: A

 

NEW QUESTION 147
An adversary stole1 million username and passwords of Pass4test LLCs customers. They took advantage of a security vulnerability in the publically accessible application hosted on the cloud. This is an example of:

  • A. Abuse of Cloud Services
  • B. Data Dispersion
  • C. Data breach
  • D. Malicious Insider

Answer: C

Explanation:
This is an example of Data Breach. Username and passwords were stolen which were stored as Data.

 

NEW QUESTION 148
CCM: In the CCM tool, a is a measure that modifies risk and includes any process, policy, device, practice or any other actions which modify risk.

  • A. Risk Impact
  • B. Control Specification
  • C. Domain

Answer: B

 

NEW QUESTION 149
Which data security control is the LEAST likely to be assigned to an IaaS provider?

  • A. Encryption solutions
  • B. Physical destruction
  • C. Application logic
  • D. Access controls
  • E. Asset management and tracking

Answer: C

 

NEW QUESTION 150
CCM: The following list of controls belong to which domain of the CCM?
GRM 06 - Policy GRM 07 - Policy Enforcement GRM 08 - Policy Impact on Risk Assessments GRM 09 - Policy Reviews GRM 10 - Risk Assessments GRM 11 - Risk Management Framework

  • A. Governing and Risk Metrics
  • B. Governance and Risk Management
  • C. Governance and Retention Management

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 151
"Capabilities are available over the network and accessed through standard mechanisms that promote use by heterogeneous thin or thick client platforms" Which of the following characterstics defines this

  • A. 0n-demand self-service
  • B. Resource pooling
  • C. Rapid elasticity
  • D. Broad network access

Answer: A

 

NEW QUESTION 152
When a cloud customer uploads PII to a cloud provider. who becomes ultimately responsible for the security of that PII?

  • A. Cloud customer
  • B. Cloud Provider
  • C. Regulator
  • D. The individuals who are the subject of the PII

Answer: A

Explanation:
Under current law, the data owner is responsible for any breaches that result in unauthorized disclosure of PII; this includes breaches caused by contracted parties and outsources services. The data owner is the cloud customer.

 

NEW QUESTION 153
Which of the following is key benefit of private cloud model?

  • A. Distributed data location
  • B. Less expensive
  • C. Off-loading IT Management
  • D. Assurance of Data Location

Answer: D

Explanation:
One of the key challenges in cloud computing is its distributed environment and dispersed data centers across the globe. It is very difficult to trace data location in public clouds.
Therefore. Assurance of data location is key advantage of private cloud.

 

NEW QUESTION 154
ISO 27001 certification can be taken as proof to achieve Third-party assessment level in CSA star program.

  • A. True
  • B. False

Answer: A

Explanation:
The CSA STAR Certification is a rigorous third-party independent assessment of the security of a cloud service provider. The technology-neutral certification leverages the requirements of the ISO/IEC
27001:2013 management system standard together with the CSA Cloud Controls Matrix.

 

NEW QUESTION 155
The key focus of any business continuity or disaster recovery should be:

  • A. Financial documents
  • B. Health and human safety
  • C. Critical assets
  • D. Critical infrastructure

Answer: B

Explanation:
The primary goal of whole business continuity and disaster recovery exercise should be health and human safety.

 

NEW QUESTION 156
Which of the following is not a common cloud service model?

  • A. Programming as a Service
  • B. Platform as a Service
  • C. Infrastructure as a Service
  • D. Software as a Service

Answer: A

Explanation:
Programming as a Service is not a common offering; the others are ubiquitous through out the industry.

 

NEW QUESTION 157
The risk left in any system after all countermeasures and strategies have been applied is called:

  • A. Annualised Risk
  • B. Mitigated Risk
  • C. Leftover risk
  • D. Residual Risk

Answer: D

Explanation:
Thats the definition of residual risk

 

NEW QUESTION 158
Who is responsible for Governance, Risk & Compliance in Software as a Service(SaaS) service model?

  • A. It's a shared responsibility between Cloud Service Provider and Cloud Customer
  • B. Cloud Service Provider
  • C. Cloud Carrier
  • D. Cloud Customer

Answer: D

Explanation:
Remember, GRC will always remain responsibility of the cloud customer in all service models

 

NEW QUESTION 159
Which of the following Standards is normally followed to manage Enterprise Risk?

  • A. ISO 27001
  • B. ISO 27005
  • C. ISO 27032
  • D. ISO 31000

Answer: D

Explanation:
ISO 31000 provides principles and guidelines to do Enterprise Risk Management.

 

NEW QUESTION 160
Your SLA with your cloud provider ensures continuity for all services.

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 161
Lack of CPU or network bandwidth and intermittent access to provisioned resources are examples of which of the following cloud risk?

  • A. Software vulnerabilities
  • B. Resource Exhaustion
  • C. Isolation failure
  • D. API vulnerabilities

Answer: B

Explanation:
They are all examples of resource exhaustion

 

NEW QUESTION 162
An inherent weakness in an information system. security procedures. internal controls, or implementation that could be exploited by a threat source.

  • A. ARO
  • B. Threat
  • C. Vulnerbility
  • D. Risk

Answer: C

Explanation:
Thats the definition of vulnerbility

 

NEW QUESTION 163
Which term is used to describe the use of tools to selectively degrade portions of the cloud to continuously test business continuity?

  • A. Organized Downtime
  • B. Planned Outages
  • C. Expected Engineering
  • D. Chaos Engineering
  • E. Resiliency Planning

Answer: D

 

NEW QUESTION 164
Which of the following is NOT a cloud computing characteristic that impacts incidence response?

  • A. The resource pooling practiced by cloud services, in addition to the rapid elasticity offered by cloud infrastructures.
  • B. Privacy concerns for co-tenants regarding the collection and analysis of telemetry and artifacts associated with an incident.
  • C. Object-based storage in a private cloud.
  • D. The possibility of data crossing geographic or jurisdictional boundaries.
  • E. The on demand self-service nature of cloud computing environments.

Answer: B

 

NEW QUESTION 165
Which ISO standards addresses Privacy in the cloud environment?

  • A. ISO 27017
  • B. ISO 27032
  • C. ISO 27034
  • D. ISO 27018

Answer: D

Explanation:
ISO/IEC 27018:2014 establishes commonly accepted control objectives, controls and guidelines for implementing measures to protect Personally Identifiable Information (PII) in accordance with the privacy principles in ISO/IEC 29100 for the public cloud computing environment.

 

NEW QUESTION 166
......

Latest 100% Passing Guarantee - Brilliant CCSK Exam Questions PDF: https://www.passexamdumps.com/CCSK-valid-exam-dumps.html

Practice Examples and Dumps & Tips for 2022 Latest CCSK Valid Tests Dumps: https://drive.google.com/open?id=1mut61WYkmiF-Df1fK96WQOZIGQuljQtP

Related Articles

more
Cloud Security Alliance CCSK Certification Practice Exam