Practice Exams:

Free CCSK Exam Braindumps

Pass your Certificate of Cloud Security Knowledge exam with these free Questions and Answers

Page 3 of 24
PDF with 117 Questions
QUESTION 6

How should an SDLC be modified to address application security in a Cloud Computing environment?

  1. A. Integrated development environments
  2. B. Updated threat and trust models
  3. C. No modification is needed
  4. D. Just-in-time compilers
  5. E. Both B and C

Correct Answer: A

QUESTION 7

Which cloud security model type provides generalized templates for helping implement cloud security?

  1. A. Conceptual models or frameworks
  2. B. Design patterns
  3. C. Controls models or frameworks
  4. D. Reference architectures
  5. E. Cloud Controls Matrix (CCM)

Correct Answer: D

QUESTION 8

What type of information is contained in the Cloud Security Alliance's Cloud Control Matrix?

  1. A. Network traffic rules for cloud environments
  2. B. A number of requirements to be implemented, based upon numerous standards and regulatory requirements
  3. C. Federal legal business requirements for all cloud operators
  4. D. A list of cloud configurations including traffic logic and efficient routes
  5. E. The command and control management hierarchy of typical cloud company

Correct Answer: B

QUESTION 9

Which statement best describes the Data Security Lifecycle?

  1. A. The Data Security Lifecycle has six stages, is strictly linear, and never varies.
  2. B. The Data Security Lifecycle has six stages, can be non-linear, and varies in that some data may never pass through all stages.
  3. C. The Data Security Lifecycle has five stages, is circular, and varies in that some data may never pass through all stages.
  4. D. The Data Security Lifecycle has six stages, can be non-linear, and is distinct in that data must always pass through all phases.
  5. E. The Data Security Lifecycle has five stages, can be non-linear, and is distinct in that data must always pass through all phases.

Correct Answer: B

QUESTION 10

When investigating an incident in an Infrastructure as a Service (IaaS) environment, what can the user investigate on their own?

  1. A. The CSP server facility
  2. B. The logs of all customers in a multi-tenant cloud
  3. C. The network components controlled by the CSP
  4. D. The CSP office spaces
  5. E. Their own virtual instances in the cloud

Correct Answer: E

Page 3 of 24
PDF with 117 Questions

Post your Comments and Discuss CSA CCSK exam with other Community members: