Weekend Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

CCSK Exam Dumps - Cloud Security Alliance Cloud Security Knowledge Questions and Answers

Question # 44

Which of the following statements best describes an identity

federation?

Options:

A.

A library of data definitions

B.

A group of entities which have decided to exist together in a single

cloud

C.

Identities which share similar attributes

D.

Several countries which have agreed to define their identities with

similar attributes

E.

The connection of one identity repository to another

Buy Now
Question # 45

What is true of a workload?

Options:

A.

It is a unit of processing that consumes memory

B.

It does not require a hardware stack

C.

It is always a virtual machine

D.

It is configured for specific, established tasks

E.

It must be containerized

Buy Now
Question # 46

Which attack surfaces, if any, does virtualization technology introduce?

Options:

A.

The hypervisor

B.

Virtualization management components apart from the hypervisor

C.

Configuration and VM sprawl issues

D.

All of the above

Buy Now
Question # 47

Which layer is the most important for securing because it is considered to be the foundation for secure cloud operations?

Options:

A.

Infrastructure

B.

Datastructure

C.

Infostructure

D.

Applistructure

E.

Metastructure

Buy Now
Question # 48

CCM: A hypothetical start-up company called "ABC" provides a cloud based IT management solution. They are growing rapidly and therefore need to put controls in place in order to manage any changes in

their production environment. Which of the following Change Control & Configuration Management production environment specific control should they implement in this scenario?

Options:

A.

Policies and procedures shall be established for managing the risks associated with applying changes to business-critical or customer (tenant)-impacting (physical and virtual) applications and system-

system interface (API) designs and configurations, infrastructure network and systems components.

B.

Policies and procedures shall be established, and supporting business processes and technical measures implemented, to restrict the installation of unauthorized software on organizationally-owned or

managed user end-point devices (e.g. issued workstations, laptops, and mobile devices) and IT infrastructure network and systems components.

C.

All cloud-based services used by the company's mobile devices or BYOD shall be pre-approved for usage and the storage of company business data.

D.

None of the above

Buy Now
Question # 49

Which of the following is one of the five essential characteristics of cloud computing as defined by NIST?

Options:

A.

Multi-tenancy

B.

Nation-state boundaries

C.

Measured service

D.

Unlimited bandwidth

E.

Hybrid clouds

Buy Now
Question # 50

Which opportunity helps reduce common application security issues?

Options:

A.

Elastic infrastructure

B.

Default deny

C.

Decreased use of micro-services

D.

Segregation by default

E.

Fewer serverless configurations

Buy Now
Question # 51

In which type of environment is it impractical to allow the customer to conduct their own audit, making it important that the data center operators are required to provide auditing for the customers?

Options:

A.

Multi-application, single tenant environments

B.

Long distance relationships

C.

Multi-tenant environments

D.

Distributed computing arrangements

E.

Single tenant environments

Buy Now
Question # 52

Who is responsible for the security of the physical infrastructure and virtualization platform?

Options:

A.

The cloud consumer

B.

The majority is covered by the consumer

C.

It depends on the agreement

D.

The responsibility is split equally

E.

The cloud provider

Buy Now
Question # 53

Why is a service type of network typically isolated on different hardware?

Options:

A.

It requires distinct access controls

B.

It manages resource pools for cloud consumers

C.

It has distinct functions from other networks

D.

It manages the traffic between other networks

E.

It requires unique security

Buy Now
Exam Code: CCSK
Exam Name: Certificate of Cloud Security Knowledge (CCSK v5.0)
Last Update: Feb 23, 2025
Questions: 260
CCSK pdf

CCSK PDF

$25.5  $84.99
 Add to Cart
CCSK Engine

CCSK Testing Engine

$28.5  $94.99
 Add to Cart
CCSK PDF + Engine

CCSK PDF + Testing Engine

$40.5  $134.99
 Add to Cart