
Get New 2022 Valid Practice To your CCSK Exam (Updated 300 Questions)
Cloud Security Knowledge CCSK Exam Practice Test Questions Dumps Bundle!
Average Salary of Certificate of Cloud Security Knowledge (CCSK) Exam Certified Professionals
The average salary of a Certificate of Cloud Security Knowledge (CCSK) Exam Certified Professional is:
- Europe: 50,000 EURO
- United State: 60,550 USD
- England: 45,000 POUND
- India: 4,477,000 INR
NEW QUESTION 116
One of the main reasons and advantage of having external audit is:
- A. Internal staff is less qualified than external auditors.
- B. Better tools used by external provider
- C. Its independent
- D. Its cheaper
Answer: C
Explanation:
All other answers are distractors. One of the primary reasons of doing external auditing is the independence of auditors.
NEW QUESTION 117
Which is the correct sequence of Cloud Data lifecycle phases?
- A. Create, Use, Share, Store, Archive, Destroy
- B. Create, Use, Store, Archive, Share, Destroy
- C. Create, Store, Use, Share, Archive, Destroy
- D. Create, Share, Use, Store, Archive, Destroy
Answer: C
Explanation:
The correct order of data lifecycle is Create, Store, Use, Share, Archive, Destroy
NEW QUESTION 118
Which is the key technology that enables the sharing of resources and makes cloud computing most viable in terms of cost savings?
- A. Scalability
- B. Content Delivery Networks(CDN)
- C. Software Defined Networking(SDN)
- D. Virtualization
Answer: D
Explanation:
Virtualization is the foundational technology that underlies and makes cloud computing possible.
Virtualization is based on the use of powerful host computers to provide a shared resource pool that can be managed to maximize the number of guest operating systems(OSs) running on each host.
NEW QUESTION 119
ENISA: "VM hopping" is:
- A. Lack of vulnerability management standards.
- B. Instability in VM patch management causing VM routing errors.
- C. Improper management of VM instances, causing customer VMs to be commingled with other customer systems.
- D. Using a compromised VM to exploit a hypervisor, used to take control of other VMs.
- E. Looping within virtualized routing systems.
Answer: D
NEW QUESTION 120
Who decides the risk appetite of the organization?
- A. Risk Officer
- B. Senior Management
- C. CEO
- D. CIO
Answer: B
Explanation:
It is the Senior Management who decides the appetite of the organization
NEW QUESTION 121
Which of the following is not a common cloud service model?
- A. Platform as a Service
- B. Software as a Service
- C. Programming as a Service
- D. Infrastructure as a Service
Answer: C
Explanation:
Programming as a Service is not a common offering; the others are ubiquitous through out the industry.
NEW QUESTION 122
All cloud services utilize virtualization technologies.
- A. True
- B. False
Answer: A
NEW QUESTION 123
REST APIs are the standard for web-based services because they run over HTTPS and work well across diverse environments.
- A. True
- B. False
Answer: A
NEW QUESTION 124
Sara has a very old application running in her infrastructure. It is difficult to migrate to the cloud.
Instead, she opted to get a new custom application built in the cloud. What service model she should for, if the application is going to use a combination of various languages and databases?
- A. SaaS
- B. XaaS
- C. IaaS
- D. PaaS
Answer: D
Explanation:
It will best for Sara to use PaaS as a service delivery model as it will provide multiple hosting environments, PaaS Key characteristics are:
- Support multiple languages and frameworks
- Multiple hosting environments
- Flexibility(plugins)
- Allow choice and reduce lock-in
- Ability to auto-scale
NEW QUESTION 125
The management plane controls and configures the:
- A. Applistructure
- B. Metastructure
- C. Infostructure
- D. Infrastructure
Answer: B
Explanation:
The management plane controls and configures the metastructure and is also part of the metastructure itself. As a reminder, cloud computing is the act of taking physical assets(like networks and processors)and using them to build resource pools. Metastructure is the glue and guts to create, provision, and de-provision the pools. The management plane includes the interfaces for building and managing the cloud itself, but also the interfaces for cloud users to manage their own allocated resources of the cloud.
Reference: CSA Security GuidelinesV.4(reproduced here for the educational purpose)
NEW QUESTION 126
Cloud services exhibit five essential characteristics that demonstrate their relation to, and differences from, traditional computing approaches. Which one of the five characteristics is described as: a consumer can unilaterally provision computing capabilities such as server time and network storage as needed.
- A. Resource pooling
- B. Broad network access
- C. Measured service
- D. On-demand self-service
- E. Rapid elasticity
Answer: D
NEW QUESTION 127
Which of the following is NOT a cloud computing characteristic that impacts incidence response?
- A. Privacy concerns for co-tenants regarding the collection and analysis of telemetry and artifacts associated with an incident.
- B. The possibility of data crossing geographic or jurisdictional boundaries.
- C. The on demand self-service nature of cloud computing environments.
- D. Object-based storage in a private cloud.
- E. The resource pooling practiced by cloud services, in addition to the rapid elasticity offered by cloud infrastructures.
Answer: A
NEW QUESTION 128
Which cloud storage technology is basically a virtual hard drive for instanced or VMs?
- A. Platform
- B. Object storage
- C. Application
- D. Volume storage
- E. Database
Answer: D
NEW QUESTION 129
Which of the following is NOT a key subsystem recommended for monitoring in cloud environments?
- A. CPU
- B. Cable
- C. Disk
- D. Network
Answer: B
Explanation:
Network, CPU and Disk(storage) are key subsystems in cloud environment that should be monitored.
NEW QUESTION 130
Cloud customer can do vulnerability assessment of their whole infrastructure on cloud just like they conduct vulnerbility assessment of their traditional infrastructure.
- A. True
- B. False
Answer: B
Explanation:
It is false.
Customer will have to take permission and give notification to cloud service provider.
The cloud owner (public or private) will typically require notification of assessments and place limits on the nature of assessments. This is because they may be unable to distinguish an assessment from a real attack without prior warning.
Ref: CSA Security Guidelines V4.0
NEW QUESTION 131
......
Fully Updated Dumps PDF - Latest CCSK Exam Questions and Answers: https://www.fast2test.com/CCSK-premium-file.html
Updated CCSK PDF for the CCSK Tests Free Updated Today: https://drive.google.com/open?id=1N59uazxErPQZA05eaP4W2uq3w6tbFbLu