Spring Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmas50

Cloud Security Alliance CCSK - Certificate of Cloud Security Knowledge v5 (CCSKv5.0)

Page: 8 / 10
Total 332 questions

What is one primary operational challenge associated with using cloud-agnostic container strategies?

A.

Limiting deployment to a single cloud service

B.

Establishing identity and access management protocols

C.

Reducing the amount of cloud storage used

D.

Management plane compatibility and consistent controls

Which of the following is a perceived advantage or disadvantage of managing enterprise risk for cloud deployments?

A.

More physical control over assets and processes.

B.

Greater reliance on contracts, audits, and assessments due to lack of visibility or management.

C.

Decreased requirement for proactive management of relationship and adherence to contracts.

D.

Increased need, but reduction in costs, for managing risks accepted by the cloud provider.

E.

None of the above.

When mapping functions to lifecycle phases, which functions are required to successfully process data?

A.

Create, Store, Use, and Share

B.

Create and Store

C.

Create and Use

D.

Create, Store, and Use

E.

Create, Use, Store, and Delete

Without virtualization, there is no cloud.

A.

False

B.

True

Which of the following best describes the responsibility for security in a cloud environment?

A.

Cloud Service Customers (CSCs) are solely responsible for security in the cloud environment. The Cloud Service Providers (CSPs) are accountable.

B.

Cloud Service Providers (CSPs) and Cloud Service Customers (CSCs) share security responsibilities. The exact allocation of responsibilities depends on the technology and context.

C.

Cloud Service Providers (CSPs) are solely responsible for security in the cloud environment. Cloud Service Customers (CSCs) have an advisory role.

D.

Cloud Service Providers (CSPs) and Cloud Service Customers (CSCs) share security responsibilities. The allocation of responsibilities is constant.

Which of the following functionalities is provided by Data Security Posture Management (DSPM) tools?

A.

Firewall management and configuration

B.

User activity monitoring and reporting

C.

Encryption of all data at rest and in transit

D.

Visualization and management for cloud data security

Which of the following best describes the role of program frameworks in defining security components and technical controls?

A.

Program frameworks evaluate the performance of individual security tools

B.

Program frameworks focus on implementing specific security technologies

C.

Program frameworks help organize overarching security policies and objectives

D.

Program frameworks primarily define compliance requirements for regulations

How does artificial intelligence pose both opportunities and risks in cloud security?

A.

AI enhances security without any adverse implications

B.

AI mainly reduces manual work with no significant security impacts

C.

AI enhances detection mechanisms but could be exploited for sophisticated attacks

D.

AI is only beneficial in data management, not security

Which data security control is the LEAST likely to be assigned to an IaaS provider?

A.

Application logic

B.

Access controls

C.

Encryption solutions

D.

Physical destruction

E.

Asset management and tracking

What mechanism does passwordless authentication primarily use for login?

A.

SMS-based codes

B.

Biometric data

C.

Local tokens or certificates

D.

OAuth tokens