Fast2test CCSK問題集でリアル試験問題でテストエンジン問題集でトレーニング [Q15-Q37]

Share

Fast2test CCSK問題集でリアル試験問題でテストエンジン問題集でトレーニング

Cloud Security Alliance CCSKテスト問題集とオンライン試験エンジン


CCSK認証試験は現在、CCSK V4.0として知られる4番目のバージョンにあります。この最新バージョンは、最新の業界のベストプラクティスを反映しており、クラウドアーキテクチャ、データセキュリティ、コンプライアンス、リスク管理など、クラウドセキュリティに関連する幅広いトピックをカバーしています。この試験はベンダー中立になることを目的としています。つまり、特定のクラウドプラットフォームやテクノロジーではなく、クラウドセキュリティの一般原則に焦点を当てています。


CCSK試験の準備には、CSAが提供する様々な学習リソースを活用できます。包括的な学習ガイド、オンライントレーニングコース、模擬試験などがあり、これらのリソースは試験に含まれるすべてのトピックをカバーし、クラウドセキュリティのベストプラクティスの深い理解を候補者に提供します。

 

質問 # 15
If there are gaps in network logging data, what can you do?

  • A. Nothing. There are simply limitations around the data that can be logged in the cloud.
  • B. Ask the cloud provider to close more ports.
  • C. Ask the cloud provider to open more ports.
  • D. Nothing. The cloud provider must make the information available.
  • E. You can instrument the technology stack with your own logging.

正解:E


質問 # 16
Which statement best describes why it is important to know how data is being accessed?

  • A. The devices used to access data may have different ownership characteristics.
  • B. The devices used to access data use a variety of applications or clients and may have different security characteristics.
  • C. The devices used to access data use a variety of operating systems and may have different programs installed on them.
  • D. The device may affect data dispersion.
  • E. The devices used to access data have different storage formats.

正解:B


質問 # 17
ISO 27001 certification can be taken as proof to achieve Third-party assessment level in CSA star program.

  • A. True
  • B. False

正解:A

解説:
The CSA STAR Certification is a rigorous third-party independent assessment of the security of a cloud service provider. The technology-neutral certification leverages the requirements of the ISO/IEC
27001:2013 management system standard together with the CSA Cloud Controls Matrix.


質問 # 18
Which of the following functions maps to all the phases of Data security life cycle?

  • A. Process
  • B. Destroy
  • C. Store
  • D. Read/Access

正解:D

解説:
Functions: There are three things we can do with a given datum:
. Read, View/read the data, including creating, copying, file transfers, dissemination, and other exchanges of information.
* Process. Perform a transaction on the data; update it; use it in a business processing transaction, etc.
. Store, Hold the data (in a file, database, etc.).


質問 # 19
Which of the following is NOT a cloud computing characteristic that impacts incidence response?

  • A. Object-based storage in a private cloud.
  • B. The possibility of data crossing geographic or jurisdictional boundaries.
  • C. The on demand self-service nature of cloud computing environments.
  • D. Privacy concerns for co-tenants regarding the collection and analysis of telemetry and artifacts associated with an incident.
  • E. The resource pooling practiced by cloud services, in addition to the rapid elasticity offered by cloud infrastructures.

正解:D


質問 # 20
Exploitable bugs in programs that attackers can use to infiltrate a computer system for the purpose of stealing data, taking control of the system or disrupting service operations, are called:

  • A. Threats
  • B. Vulnerbilities
  • C. Threat Agents
  • D. Honepots

正解:B


質問 # 21
Any given processor and memory will nearly always be running multiple workloads, often from different tenants.

  • A. True
  • B. False

正解:A


質問 # 22
When investigating an incident in an Infrastructure as a Service (IaaS) environment, what can the user investigate on their own?

  • A. The CSP server facility
  • B. Their own virtual instances in the cloud
  • C. The logs of all customers in a multi-tenant cloud
  • D. The CSP office spaces
  • E. The network components controlled by the CSP

正解:B


質問 # 23
What should every cloud customer set up with its cloud service provider (CSP) that can be utilized in the event of an incident?

  • A. A spill remediation kit
  • B. A back-up website
  • C. A data destruction plan
  • D. A rainy day fund
  • E. A communication plan

正解:E


質問 # 24
Which term describes any situation where the cloud consumer does
not manage any of the underlying hardware or virtual machines?

  • A. Virtual machineless
  • B. Abstraction
  • C. Provider managed
  • D. Serverless computing
  • E. Container

正解:D


質問 # 25
Credentials and cryptographic keys must not be embedded in source code or distributed in public facing repositories such as GitHub.

  • A. True
  • B. False

正解:A

解説:
This is true. Credentials and cryptographic keys must not be embedded in source code or distributed in public facing repositories such as GitHub, because there is a significant chance of discovery and misuse.
Keys need to be appropriately secured and a well- secured public key infrastructure (PKI) is needed to ensure key-management activities are carried out.


質問 # 26
What are the primary security responsibilities of the cloud provider in compute virtualizations?

  • A. Maintain a secure virtualization infrastructure and configure the security settings
  • B. Enforce isolation and monitor and log workloads
  • C. Enforce isolation and maintain a secure virtualization infrastructure
  • D. Monitor and log workloads and configure the security settings
  • E. Enforce isolation and configure the security settings

正解:C


質問 # 27
ENISA: Which is not one of the five key legal issues common across all scenarios:

  • A. Intellectual property
  • B. Globalization
  • C. Data protection
  • D. Professional negligence
  • E. Outsourcing services and changes in control

正解:B


質問 # 28
Which of the following can lead to vendor lock-in?

  • A. Large supplier Redundancy
  • B. CSP's vendor utilisation
  • C. Lack of transparency in terms of use
  • D. Big Data sets

正解:C

解説:
Lack of transparency in terms of use can lead to vendor lock-in. Contracts and SLAs should clearly define the relationship between Cloud Service Provider(CSP)and the cloud customer. Clause of data portability should be there.


質問 # 29
"Resource usage can be monitored, controlled, and reported, providing transparency for both the provider and consumer of the utilized service. " Which of the following characteristics defines this?

  • A. Resource pooling
  • B. Rapid elasticity
  • C. Measured service
  • D. Broad network access

正解:C

解説:
Measured service is defined as "Resource usage can be monitored, controlled, and reported, providing transparency for both the provider and consumer of the utilized service. "


質問 # 30
What are the encryption options available for SaaS consumers?

  • A. Any encryption option that is available for volume storage, object storage, or PaaS
  • B. Client/application and file/folder encryption
  • C. Provider-managed and (sometimes) proxy encryption
  • D. Object encryption Volume storage encryption

正解:C


質問 # 31
In a cloud scenario. who is the data processor and who is the data controller?

  • A. Cloud Service Provider is the data processor and its customer is the data controller
  • B. Neither cloud service provider nor customer is data processor or data controller.
  • C. Cloud Service Provider is the data controller and its customer is the data processor
  • D. Database admin is the data controller and application owner is the data processor

正解:A

解説:
The customer determines the ultimate purpose of the processing and decides on the outsourcing or the delegation of all or part of the concerned activities to external organizations. Therefore, the customer acts as a controller.
When the service provider supplies the means and the platform, acting on behalf of the customer, it is considered to be a data processor.


質問 # 32
An important consideration when performing a remote vulnerability test of a cloud-based application is to

  • A. Obtain provider permission for test
  • B. Schedule vulnerability test at night
  • C. Use application layer testing tools exclusively
  • D. Use techniques to evade cloud provider's detection systems
  • E. Use network layer testing tools exclusively

正解:A

解説:
Explanation/Reference:


質問 # 33
What is true of searching data across cloud environments?

  • A. Search and discovery time is always factored into a contract between the consumer and provider.
  • B. The cloud provider must conduct the search with the full administrative controls.
  • C. You might not have the ability or administrative rights to search or access all hosted data.
  • D. All cloud-hosted email accounts are easily searchable.
  • E. You can easily search across your environment using any E-Discovery tool.

正解:C


質問 # 34
What is the newer application development methodology and philosophy focused on automation of application development and deployment?

  • A. DevOps
  • B. BusOps
  • C. SecDevOps
  • D. Scrum
  • E. Agile

正解:A


質問 # 35
In Platform as a Service (PaaS), platform security is a responsibility of:

  • A. Customer
  • B. It's a shared responsibility
  • C. Cloud service provider
  • D. Neither of them

正解:B

解説:
This is a very confusing question and we need to understand that its a shared responsibility between cloud service provider and customer.


質問 # 36
Which of the following is NOT a characteristic of cloud computing?

  • A. Resource Pooling
  • B. Metered service
  • C. Reduced personnel cost
  • D. On-demand self service

正解:C

解説:
The characteristics of cloud computing are
1. 0n-demand self-service: A consumer can unilaterally provision computing capabilities, such as server time and network storage, as needed automatically without requiring human interaction with each service provider.
2. Broad network access: Capabilities are available over the network and accessed through standard mechanisms that promote use by heterogeneous thin or thick client platforms(e.g, mobile phones, tablets, laptops and workstations).
3. Resource pooling: The provider's computing resources are pooled to serve multiple consumers using a multi-tenant model, with different physical and virtual resources dynamically assigned and reassigned according to consumer demand. There is a sense of location independence in that the customer generally has no control or knowledge over the exact location of the provided resources but may be able to specify location at a higher level of abstraction(e.g, country, state or datacenter).
Examples of resources include storage, processing, memory and network bandwidth.
4. Rapid elasticity: Capabilities can be elastically provisioned and released, in some cases automatically, to scale rapidly outward and inward commensurate with demand. To the consumer, the capabilities available for provisioning often appear to be unlimited and can be appropriated in any quantity at anytime.
5. Measured service: Cloud systems automatically control and optimize resource use by leveraging a metering capability at some level of abstraction appropriate to the type of service(e.g, storage, processing, bandwidth and active user accounts).
Resource usage can be monitored, controlled and reported, providing transparency for the provider and consumer.


質問 # 37
......


CCSK認定試験は、クラウドコンピューティングセキュリティの知識と専門知識の開発に関心のあるITの専門家、セキュリティ専門家、リスク管理の専門家にとって不可欠な認定です。この認定は、クラウドコンピューティング環境を効果的に管理および保護するために必要な知識とスキルを個人に提供します。また、専門能力開発と継続的な学習へのコミットメントを実証するのにも役立ちます。認定はグローバルに認められており、認定を保持している個人に新しいキャリアの機会を開くことができます。

 

Cloud Security Alliance CCSK問題を提供していますCloud Security Knowledge問題集と完璧な解答付き:https://jp.fast2test.com/CCSK-premium-file.html

信頼され続けるCCSK試験のコツとPDF試験材料:https://drive.google.com/open?id=1bv7VZnGfrP7KIo9sv1T7gU5_Bopdng6X


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어