New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

Legit CCSK Exam Download

Page: 9 / 13
Question 36

The containment phase of the incident response lifecycle requires taking systems offline.

Options:

A.

False

B.

True

Question 37

Which data security control is the LEAST likely to be assigned to an IaaS provider?

Options:

A.

Application logic

B.

Access controls

C.

Encryption solutions

D.

Physical destruction

E.

Asset management and tracking

Question 38

CCM: A hypothetical company called: “Health4Sure” is located in the United States and provides cloud based services for tracking patient health. The company is compliant with HIPAA/HITECH Act among other industry standards. Health4Sure decides to assess the overall security of their cloud service against the CCM toolkit so that they will be able to present this document to potential clients.

Which of the following approach would be most suitable to assess the overall security posture of Health4Sure’s cloud service?

Options:

A.

The CCM columns are mapped to HIPAA/HITECH Act and therefore Health4Sure could verify the CCM controls already covered ad a result of their compliance with HIPPA/HITECH Act. They could then assess the remaining controls. This approach will save time.

B.

The CCM domain controls are mapped to HIPAA/HITECH Act and therefore Health4Sure could verify the CCM controls already covered as a result of their compliance with HIPPA/HITECH Act. They could then assess the remaining controls thoroughly. This approach saves time while being able to assess the company’s overall security posture in an efficient manner.

C.

The CCM domains are not mapped to HIPAA/HITECH Act. Therefore Health4Sure should assess the security posture of their cloud service against each and every control in the CCM. This approach will allow a thorough assessment of the security posture.

Question 39

If the management plane has been breached, you should confirm the templates/configurations for your infrastructure or applications have not also been compromised.

Options:

A.

False

B.

True

Page: 9 / 13
Exam Code: CCSK
Exam Name: Certificate of Cloud Security Knowledge (v5.0)
Last Update: Dec 22, 2024
Questions: 177
CCSK pdf

CCSK PDF

$25.5  $84.99
CCSK Engine

CCSK Testing Engine

$28.5  $94.99
CCSK PDF + Engine

CCSK PDF + Testing Engine

$40.5  $134.99