
完全版は2024年最新のCCSP試験問題集テストガイドはトレーニング専門問題
試験準備と合格するための最高なカバー率問題集を提供しています これで試験準備せよCCSP
ISC CCSP認定を獲得するには、候補者は、少なくとも3年間の情報セキュリティで、クラウドコンピューティングで1年間、情報技術で最低5年の経験を持たなければなりません。候補者はまた、125の複数選択の質問で構成されるCCSP試験に合格する必要があり、4時間以内に完了する必要があります。この試験では、クラウドセキュリティの6つのドメインをカバーしており、候補者は1000のうち少なくとも700を獲得して合格する必要があります。
質問 # 319
Which ISO standard refers to addressing security risks in a supply chain?
- A. ISO 27001
- B. ISO/IEC 28000:2007
- C. ISO 31000:2009
- D. ISO 18799
正解:B
質問 # 320
What is the intellectual property protection for the logo of a new video game?
Response:
- A. Trademark
- B. Trade secret
- C. Patent
- D. Copyright
正解:A
質問 # 321
Because of multitenancy, specific risks in the public cloud that don't exist in the other cloud service models include all the following except:
- A. DoS/DDoS
- B. Information bleed
- C. Risk of loss/disclosure due to legal seizures
- D. Escalation of privilege
正解:A
解説:
Explanation
DoS/DDoS threats and risks are not unique to the public cloud model.
質問 # 322
Which of the following threat types involves the sending of untrusted data to a user's browser to be executed with their own credentials and access?
- A. Cross-site request forgery
- B. Cross-site scripting
- C. Injection
- D. Missing function level access control
正解:B
解説:
Explanation
Cross-site scripting (XSS) is an attack where a malicious actor is able to send untrusted data to a user's browser without going through any validation or sanitization processes, or where the code is not properly escaped from processing by the browser. The code is then executed on the user's browser with the user's own access and permissions, allowing an attacker to redirect their web traffic, steal data from their session, or potentially access information on the user's own computer that their browser has the ability to access.
質問 # 323
DLP can be combined with what other security technology to enhance data controls?
- A. SIEM
- B. Kerberos
- C. Hypervisor
- D. DRM
正解:D
解説:
DLP can be combined with DRM to protect intellectual property; both are designed to deal with data that falls into special categories. SIEMs are used for monitoring event logs, not live data movement. Kerberos is an authentication mechanism. Hypervisors are used for virtualization.
質問 # 324
What is the intellectual property protection for a confidential recipe for muffins?
- A. Patent
- B. Copyright
- C. Trade secret
- D. Trademark
正解:C
解説:
Explanation
Confidential recipes unique to the organization are trade secrets. The other answers listed are answers to other questions.
質問 # 325
Which strategy involves using a fake production system to lure attackers in order to learn about their tactics?
Response:
- A. IPS
- B. Firewall
- C. IDS
- D. Honeypot
正解:D
質問 # 326
With a federated identity system, what does the identity provider send information to after a successful authentication?
- A. Relying party
- B. Service relay
- C. Service relay
- D. Service originator
正解:A
解説:
Explanation/Reference:
Explanation:
Upon successful authentication, the identity provider sends an assertion with appropriate attributes to the relying party to grant access and assign appropriate roles to the user. The other terms provided are similar sounding to the correct term but are not actual components of a federated system.
質問 # 327
Just like the risk management process, the BCDR planning process has a defined sequence of steps and processes to follow to ensure the production of a comprehensive and successful plan.
Which of the following is the correct sequence of steps for a BCDR plan?
- A. Gather requirements, define scope, assess risk, implement
- B. Gather requirements, define scope, implement, assess risk
- C. Define scope, gather requirements, assess risk, implement
- D. Define scope, gather requirements, implement, assess risk
正解:C
解説:
The correct sequence for a BCDR plan is to define the scope, gather requirements based on the scope, assess overall risk, and implement the plan. The other sequences provided are not in the correct order.
質問 # 328
Which of the following is NOT considered a type of data loss?
- A. Accidental deletion
- B. Lost or destroyed encryption keys
- C. Data corruption
- D. Stolen by hackers
正解:D
解説:
Explanation
Explanation:
The exposure of data by hackers is considered a data breach. Data loss focuses on the data availability rather than security. Data loss occurs when data becomes lost, unavailable, or destroyed, when it should not have been.
質問 # 329
In the cloud motif, the data processor is usually:
Response:
- A. The cloud customer
- B. The cloud provider
- C. The party that assigns access rights
- D. The cloud access security broker
正解:B
質問 # 330
Legal controls refer to which of the following?
- A. ISO 27001
- B. PCI DSS
- C. NIST 800-53r4
- D. Controls designed to comply with laws and regulations related to the cloud environment
正解:D
解説:
Explanation/Reference:
Explanation:
Legal controls are those controls that are designed to comply with laws and regulations whether they be local or international.
質問 # 331
Countermeasures for protecting cloud operations against external attackers include all of the following except:
- A. Hardened devices and systems, including servers, hosts, hypervisors, and virtual machines.
- B. Detailed and extensive background checks.
- C. Continual monitoring for anomalous activity.
- D. Regular and detailed configuration/change management activities
正解:B
解説:
Explanation/Reference:
Explanation:
Background checks are controls for attenuating potential threats from internal actors; external threats aren't likely to submit to background checks.
質問 # 332
What controls the formatting and security settings of a volume storage system within a cloud environment?
- A. Operating system of the host
- B. SAN host controller
- C. Management plane
- D. Hypervisor
正解:A
解説:
Explanation
Once a storage LUN is allocated to a virtual machine, the operating system of that virtual machine will format, manage, and control the file system and security of the data on that LUN.
質問 # 333
Which cloud storage type uses an opaque value or descriptor to categorize and organize data?
- A. Volume
- B. Structured
- C. Unstructured
- D. Object
正解:C
質問 # 334
In which cloud service model is the customer required to maintain the OS?
- A. PaaS
- B. Iaas
- C. SaaS
- D. CaaS
正解:B
解説:
Explanation
In IaaS, the service is bare metal, and the customer has to install the OS and the software; the customer then is responsible for maintaining that OS. In the other models, the provider installs and maintains the OS.
質問 # 335
What category of PII data can carry potential fines or even criminal charges for its improper use or disclosure?
- A. Regulated
- B. Legal
- C. Protected
- D. Contractual
正解:A
解説:
Explanation
Regulated PII data carries legal and jurisdictional requirements, along with official penalties for its misuse or disclosure, which can be either civil or criminal in nature. Legal and protected are similar terms, but neither is the correct answer in this case. Contractual requirements can carry financial or contractual impacts for the improper use or disclosure of PII data, but not legal or criminal penalties that are officially enforced.
質問 # 336
What category of PII data can carry potential fines or even criminal charges for its improper use or disclosure?
- A. Regulated
- B. Legal
- C. Protected
- D. Contractual
正解:A
解説:
Regulated PII data carries legal and jurisdictional requirements, along with official penalties for its misuse or disclosure, which can be either civil or criminal in nature. Legal and protected are similar terms, but neither is the correct answer in this case. Contractual requirements can carry financial or contractual impacts for the improper use or disclosure of PII data, but not legal or criminal penalties that are officially enforced.
質問 # 337
Resolving resource contentions in the cloud will most likely be the job of the ____________.
Response:
- A. Emulator
- B. Regulator
- C. Router
- D. Hypervisor
正解:D
質問 # 338
......
ISC CCSP(Certified Cloud Security Professional)認定資格は、クラウド環境を安全にするために必要な知識とスキルを検証する、世界的に認知された資格です。この認定資格は、クラウドコンピューティング技術とサービスに携わる経験豊富なITおよび情報セキュリティ専門家を対象としています。
検証された材料は決まってこれCCSP:https://jp.fast2test.com/CCSP-premium-file.html
合格するために必要なCCSP試験問題集:https://drive.google.com/open?id=1T72lzLdKPltNLzYOKHYgZPdouvVfe2Vx