Results
You’re not ready,
Back to the Books
HD Quiz powered by harmonic design
#1. Access controls in the cloud should be implemented in all of the layers except.
#2. IaaS volumes can be encrypted using different methods,except.
#3. SaaS providers can leverage these encryption methods for their customers,except.
#4. Which of the following is NOT considered a part of Common Criteria?
#5. Container systems usually consist of the following except.
#6. a service exposed by the provider, where the customer doesn’t manage any of the underlying hardware or virtual machines and simply accesses exposed function is known as a?
#7. Which of the following is not a benefit of SDN Security.
#8. When object storage is used as the back-end for an application (including mobile applications), encrypt the data using an encryption engine embedded in the application or client is known as.
#9. Data passes through an encryption proxy before being sent to the SaaS application is known as?
#10. When it comes to Application security how would you prevent Elevation of Privilege.
#11. Three layers of a SAN include all except.
#12. You have a access security concern that is not covered in the contract and no way to enforce it, this is know as a.
#13. In which phase of the Data Lifecycle employs encryption in transit, application security and data loss prevention?
#14. With securing cloud data transfers, most cloud provider APIs use Transport Layer Security (TLS) by default. True or False
#15. When it comes to IaaS and SaaS, who is primarily responsible for IAM?
#16. Data owners are expected to select the appropriate classification for a particular data set.
#17. Combines both device and user authentication to provision network access to resources dynamically.
#18. Data classification will often rely on metadata (data about the data) such as tags and labels that define the classification level of the data and how it should be handled and controlled. True or False.
#19. To Secure the Management Plane a Provider must include the following, except?
#20. This classification approach inspects and interprets data looking for known sensitive data.
#21. Replacing an exploited server with a newly patched server to stave off an attack is an example of which.
#22. The process of asserting an identity across different systems or organizations (key for Single Sign On).
#23. Which of the following is incorrect as it pertains to SaaS cloud service responsibilities.
#24. Private cloud governance depends on who owns and operates the private cloud: If you outsource a private cloud, governance changes. True or False
#25. In which phase of the Data Lifecycle does Classifications and Entitlements occur?
#26. Which of the following is not one of the four NIST/ISO/IEC deployment models.
#27. A point-in-time look at the design of the controls is known as?
#28. Data is encrypted in the PaaS application or the client accessing the platform is known as.
#29. This classification approach looks at application, storage location, or the creator of the data as an indicator of sensitive information.
#30. Includes managing overall risk for the organization, aligned with the organization’s governance and risk tolerance.
#31. Auto-scaling and failover are the two most important attributes that a virtual appliance should have in a cloud environment. True or False
#32. Compliance testing looks at the accuracy and integrity of transactions that go through processes and information systems. True or False
#33. By placing an encryption proxy in a trusted area between the cloud user and the cloud provider you will ensure the data transfer is secure, True or False
#34. In a Immutable environment, It is best practice, to get logs off servers and on to a centralized location as quickly as possible, because all servers must be considered ephemeral in the cloud. True or False
#35. A bastion network can be defined as a network that data must go through in order to get to a destination, True or False
