Weekend Sale Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Activedumpsnet Logo
  1. Home
  2. Cloud Security Alliance
  3. Cloud Security Knowledge
  4. CCSK - Certificate of Cloud Security Knowledge (v4.0)

Cloud Security Alliance CCSK Certificate of Cloud Security Knowledge (v4.0) Exam Practice Test

Page: 1 / 11
Total 110 questions
Get CCSK Full Access Download CCSK PDF

Certificate of Cloud Security Knowledge (v4.0) Questions and Answers

Question 1

For third-party audits or attestations, what is critical for providers to publish and customers to evaluate?

Options:

A.

Scope of the assessment and the exact included features and services for the assessment

B.

Provider infrastructure information including maintenance windows and contracts

C.

Network or architecture diagrams including all end point security devices in use

D.

Service-level agreements between all parties

E.

Full API access to all required services

Question 2

CCM: A hypothetical company called: “Health4Sure” is located in the United States and provides cloud based services for tracking patient health. The company is compliant with HIPAA/HITECH Act among other industry standards. Health4Sure decides to assess the overall security of their cloud service against the CCM toolkit so that they will be able to present this document to potential clients.

Which of the following approach would be most suitable to assess the overall security posture of Health4Sure’s cloud service?

Options:

A.

The CCM columns are mapped to HIPAA/HITECH Act and therefore Health4Sure could verify the CCM controls already covered ad a result of their compliance with HIPPA/HITECH Act. They could then assess the remaining controls. This approach will save time.

B.

The CCM domain controls are mapped to HIPAA/HITECH Act and therefore Health4Sure could verify the CCM controls already covered as a result of their compliance with HIPPA/HITECH Act. They could then assess the remaining controls thoroughly. This approach saves time while being able to assess the company’s overall security posture in an efficient manner.

C.

The CCM domains are not mapped to HIPAA/HITECH Act. Therefore Health4Sure should assess the security posture of their cloud service against each and every control in the CCM. This approach will allow a thorough assessment of the security posture.

Question 3

What is the most significant security difference between traditional infrastructure and cloud computing?

Options:

A.

Management plane

B.

Intrusion detection options

C.

Secondary authentication factors

D.

Network access points

E.

Mobile security configuration options

Question 4

When configured properly, logs can track every code, infrastructure, and configuration change and connect it back to the submitter and approver, including the test results.

Options:

A.

False

B.

True

Question 5

Without virtualization, there is no cloud.

Options:

A.

False

B.

True

Question 6

What item below allows disparate directory services and independent security domains to be interconnected?

Options:

A.

Coalition

B.

Cloud

C.

Intersection

D.

Union

E.

Federation

Question 7

What method can be utilized along with data fragmentation to enhance security?

Options:

A.

Encryption

B.

Organization

C.

Knowledge management

D.

IDS

E.

Insulation

Question 8

How does running applications on distinct virtual networks and only connecting networks as needed help?

Options:

A.

It reduces hardware costs

B.

It provides dynamic and granular policies with less management overhead

C.

It locks down access and provides stronger data security

D.

It reduces the blast radius of a compromised system

E.

It enables you to configure applications around business groups

Question 9

CCM: The Architectural Relevance column in the CCM indicates the applicability of the cloud security control to which of the following elements?

Options:

A.

Service Provider or Tenant/Consumer

B.

Physical, Network, Compute, Storage, Application or Data

C.

SaaS, PaaS or IaaS

Question 10

ENISA: Which is a potential security benefit of cloud computing?

Options:

A.

More efficient and timely system updates

B.

ISO 27001 certification

C.

Provider can obfuscate system O/S and versions

D.

Greater compatibility with customer IT infrastructure

E.

Lock-In

Question 11

CCM: The Cloud Service Delivery Model Applicability column in the CCM indicates the applicability of the cloud security control to which of the following elements?

Options:

A.

Mappings to well-known standards and frameworks

B.

Service Provider or Tenant/Consumer

C.

Physical, Network, Compute, Storage, Application or Data

D.

SaaS, PaaS or IaaS

Question 12

What is defined as the process by which an opposing party may obtain private documents for use in litigation?

Options:

A.

Discovery

B.

Custody

C.

Subpoena

D.

Risk Assessment

E.

Scope

Question 13

Which term is used to describe the use of tools to selectively degrade portions of the cloud to continuously test business continuity?

Options:

A.

Planned Outages

B.

Resiliency Planning

C.

Expected Engineering

D.

Chaos Engineering

E.

Organized Downtime

Question 14

Which statement best describes the Data Security Lifecycle?

Options:

A.

The Data Security Lifecycle has six stages, is strictly linear, and never varies.

B.

The Data Security Lifecycle has six stages, can be non-linear, and varies in that some data may never pass through all stages.

C.

The Data Security Lifecycle has five stages, is circular, and varies in that some data may never pass through all stages.

D.

The Data Security Lifecycle has six stages, can be non-linear, and is distinct in that data must always pass through all phases.

E.

The Data Security Lifecycle has five stages, can be non-linear, and is distinct in that data must always pass through all phases.

Question 15

In volume storage, what method is often used to support resiliency and security?

Options:

A.

proxy encryption

B.

data rights management

C.

hypervisor agents

D.

data dispersion

E.

random placement

Question 16

An important consideration when performing a remote vulnerability test of a cloud-based application is to

Options:

A.

Obtain provider permission for test

B.

Use techniques to evade cloud provider’s detection systems

C.

Use application layer testing tools exclusively

D.

Use network layer testing tools exclusively

E.

Schedule vulnerability test at night

Load More CCSK Questions 
Page: 1 / 11
Total 110 questions
Get CCSK Full Access Download CCSK PDF