Practice Exams:

Free CCSP Exam Braindumps

Pass your Certified Cloud Security Professional exam with these free Questions and Answers

Page 20 of 103
PDF with 512 Questions
QUESTION 91

- (Exam Topic 4)
Which of the following areas of responsibility always falls completely under the purview of the cloud provider, regardless of which cloud service category is used?

  1. A. Infrastructure
  2. B. Data
  3. C. Physical
  4. D. Governance

Correct Answer: C
Regardless of the cloud service category used, the physical environment is always the sole responsibility of the cloud provider. In many instances, the cloud provider will supply audit reports or some general information about their physical security practices, especially to those customers or potential customers that may have regulatory requirements, but otherwise the cloud customer will have very little insight into the physical environment. With IaaS, the infrastructure is a shared responsibility between the cloud provider and cloud customer. With all cloud service categories, the data and governance are always the sole responsibility of the cloud customer.

QUESTION 92

- (Exam Topic 4)
Which of the following areas of responsibility would be shared between the cloud customer and cloud provider within the Software as a Service (SaaS) category?

  1. A. Data
  2. B. Governance
  3. C. Application
  4. D. Physical

Correct Answer: C
With SaaS, the application is a shared responsibility between the cloud provider and cloud customer. Although the cloud provider is responsible for deploying, maintaining, and securing the application, the cloud customer does carry some responsibility for the configuration of users and options. Regardless of the cloud service category used, the physical environment is always the sole responsibility of the cloud provider. With all cloud service categories, the data and governance are always the sole responsibility of the cloud customer.

QUESTION 93

- (Exam Topic 3)
In order to ensure ongoing compliance with regulatory requirements, which phase of the cloud data lifecycle must be tested regularly?

  1. A. Archive
  2. B. Share
  3. C. Store
  4. D. Destroy

Correct Answer: A
In order to ensure compliance with regulations, it is important for an organization to regularly test the restorability of archived data. As technologies change and older systems are deprecated, the risk rises for an organization to lose the ability to restore data from the format in which it is stored. With the destroy, store, and share phases, the currently used technologies will be sufficient for an organization's needs in an ongoing basis, so the risk that is elevated with archived data is not present.

QUESTION 94

- (Exam Topic 2)
Which audit type has been largely replaced by newer approaches since 2011?

  1. A. SOC Type 1
  2. B. SSAE-16
  3. C. SAS-70
  4. D. SOC Type 2

Correct Answer: C
SAS-70 reports were replaced in 2011 with the SSAE-16 reports throughout the industry.

QUESTION 95

- (Exam Topic 1)
Which of the following are the storage types associated with IaaS?

  1. A. Volume and object
  2. B. Volume and label
  3. C. Volume and container
  4. D. Object and target

Correct Answer: A

Page 20 of 103
PDF with 512 Questions

Post your Comments and Discuss ISC2 CCSP exam with other Community members: