最新のCCSP学習ガイド2023年最新の- 提供するのはテストエンジンとPDF [Q406-Q422]

Share

最新のCCSP学習ガイド2023年最新の- 提供するのはテストエンジンとPDF

最新版を今すぐ試そうCCSP練習テスト問題解答が待ってます


ISC CCSP 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Understand Design Principles of Secure Cloud Computing
  • Virtualization Security
トピック 2
  • Describe Cloud Reference Architecture
  • Cloud Service Capabilities
  • Cloud Deployment Models
トピック 3
  • Understand Security Concepts Relevant to Cloud Computing
  • Data and Media Sanitization
  • Cryptography and Key Management
トピック 4
  • Analyze Risks Associated with Cloud Infrastructure
  • Cloud Vulnerabilities, Threats and Attacks
トピック 5
  • Advocate Training and Awareness for Application Security
  • Physical and Environmental Protection
トピック 6
  • Cloud Computing Roles
  • Key Cloud Computing Characteristics
  • Building Block Technologies

 

質問 406
Which of the following is not a factor an organization might use in the cost-benefit analysis when deciding whether to migrate to a cloud environment?
Response:

  • A. The time savings and efficiencies offered by the cloud service
  • B. Branding associated with which cloud provider might be selected
  • C. Pooled resources in the cloud
  • D. Shifting from capital expenditures to support IT investment to operational expenditures

正解: B

 

質問 407
Which type of audit report does many cloud providers use to instill confidence in their policies, practices, and procedures to current and potential customers?

  • A. SAS-70
  • B. SOX
  • C. SOC 1
  • D. SOC 2

正解: D

解説:
Explanation
One approach that many cloud providers opt to take is to undergo a SOC 2 audit and make the report available to cloud customers and potential cloud customers as a way of providing security confidence without having to open their systems or sensitive information to the masses.

 

質問 408
Which of the following is the optimal temperature for a data center, per the guidelines established by the America Society of Heating, Refrigeration, and Air Conditioning Engineers (ASHRAE)?

  • A. 44.6-60-8degF(7-16degC)
  • B. 51.8-66.2degF(11-19degC)
  • C. 69.8-86.0degF (21-30degC)
  • D. 64.4-80.6degF(18-27degC)

正解: D

解説:
Explanation/Reference:
Explanation:
The guidelines from ASHRAE establish 64.4-80.6degF (18-27degC) as the optimal temperature for a data center.

 

質問 409
Which security certification serves as a general framework that can be applied to any type of system or application?
Response:

  • A. NIST SP 800-53
  • B. PCI DSS
  • C. ISO/IEC 27001
  • D. FIPS 140-2

正解: C

 

質問 410
Cryptographic keys should be secured ________________ .

  • A. By armed guards
  • B. With two-person integrity
  • C. To a level at least as high as the data they can decrypt
  • D. In vaults

正解: C

解説:
The physical security of crypto keys is of some concern, but guards or vaults are not always necessary.
Two-person integrity might be a good practice for protecting keys. The best answer to this question is option A, because it is always true, whereas the remaining options depend on circumstances.

 

質問 411
What does dynamic application security testing (DAST) NOT entail?

  • A. Knowledge of the system
  • B. Probing
  • C. Discovery
  • D. Scanning

正解: A

解説:
Explanation
Dynamic application security testing (DAST) is considered "black box" testing and begins with no inside knowledge of the application or its configurations. Everything about the application must be discovered during the testing.

 

質問 412
Identity and access management (IAM) is a security discipline that ensures which of the following?

  • A. That all users are properly authenticated
  • B. That unauthorized users will get access to the right resources at the right time for the right reasons
  • C. That the right individual gets access to the right resources at the right time for the right reasons.
  • D. That all users are properly authorized

正解: C

解説:
Explanation
Options A and C are also correct, but included in B, making B the best choice. D is incorrect, because we don't want unauthorized users gaining access.

 

質問 413
Within a SaaS environment, what is the responsibility on the part of the cloud customer in regard to procuring the software used?

  • A. Purchasing
  • B. Licensing
  • C. Development
  • D. Maintenance

正解: B

解説:
Within a SaaS implementation, the cloud customer licenses the use of the software from the cloud provider because SaaS delivers a fully functional application to the customer. With SaaS, the cloud provider is responsible for the entire software application and any necessary infrastructure to develop, run, and maintain it. The purchasing, development, and maintenance are fully the responsibility of the cloud provider.

 

質問 414
Although indirect identifiers cannot alone point to an individual, the more of them known can lead to a specific identity. Which strategy can be used to avoid such a connection being made?
Response:

  • A. Obfuscation
  • B. Encryption
  • C. Anonymization
  • D. Masking

正解: C

 

質問 415
Under EU law, a cloud customer who gives sensitive data to a cloud provider is still legally responsible for the damages resulting from a data breach caused by the provider; the EU would say that it is the cloud customer's fault for choosing the wrong provider.
This is an example of insufficient ____________.

  • A. Proof
  • B. Application of reasonableness
  • C. Evidence
  • D. Due diligence

正解: D

 

質問 416
Which is the lowest level of the CSA STAR program?

  • A. Self-assessment
  • B. Attestation
  • C. Continuous monitoring
  • D. Hybridization

正解: A

解説:
Explanation
The lowest level is Level 1, which is self-assessment, Level 2 is an external third-party attestation, and Level 3 is a continuous-monitoring program. Hybridization does not exist as part of the CSA STAR program.

 

質問 417
Which aspect of archiving must be tested regularly for the duration of retention requirements?

  • A. Recoverability
  • B. Auditability
  • C. Availability
  • D. Portability

正解: A

解説:
Explanation
In order for any archiving system to be deemed useful and compliant, regular tests must be performed to ensure the data can still be recovered and accessible, should it ever be needed, for the duration of the retention requirements.

 

質問 418
When a data center is configured such that the backs of the devices face each other and the ambient temperature in the work area is cool, it is called ___________.

  • A. Thermo-optimized
  • B. Hot aisle containment
  • C. HVAC modulated
  • D. Cold aisle containment

正解: B

 

質問 419
What process entails taking sensitive data and removing the indirect identifiers from each data object so that the identification of a single entity would not be possible?

  • A. Encryption
  • B. Anonymization
  • C. Masking
  • D. Tokenization

正解: B

解説:
Anonymization is a type of masking, where indirect identifiers are removed from a data set to prevent the mapping back of data to an individual. Although masking refers to the overall approach of covering sensitive data, anonymization is the best answer here because it is more specific to exactly what is being asked. Tokenization involves the replacement of sensitive data with a key value that can be matched back to the real value. However, it is not focused on indirect identifiers or preventing the matching to an individual. Encryption refers to the overall process of protecting data via key pairs and protecting confidentiality.

 

質問 420
Which of the following is NOT a common component of a DLP implementation process?

  • A. Enforcement
  • B. Revision
  • C. Discovery
  • D. Monitoring

正解: B

 

質問 421
Managed cloud services exist because the service is less expensive for each customer than creating the same services for themselves in a legacy environment. Using a managed service allows the customer to realize significant cost savings through the reduction of ____________.
Response:

  • A. Data
  • B. Risk
  • C. Security controls
  • D. Personnel

正解: D

 

質問 422
......

CCSP問題集と試験テストエンジン:https://jp.fast2test.com/CCSP-premium-file.html

ISC CCSP問題集にはリアル試験問題解答:https://drive.google.com/open?id=1HuIQVRHsJX1NRKlLAQ0GB8sQYKn7sfYe


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어