Cloud Practice Exam 1

#1. The key difference between cloud and traditional computing is the metastructure. True or False.

False

True

#2. Lists cloud security controls and maps them to multiple security and compliance standards.

Enterprise risk management

Consensus Assessment Initiative Questionnaire (CAIQ)

Cloud Controls Matrix (CCM)

Content analysis

#3. What are the components of IaaS Encryption (choose all that apply)

Select all that apply:

Externally managed encryption

Application layer encryption

Instance-managed encryption:

Server-side encryption

Client-side encryption

#4. The production percentage service level that needs to be restored to meet BCDR objectives in the case of a failure is known as?

recovery service level (RSL)

recovery point objective (RPO)

recovery acceptance agreement (RAG)

recovery time gap (RTG)

#5. A Cloud Access Security Broker(CASB), can handle IAM and key management services for cloud customers, True or False?

True

False

#6. The core components of a computing system: compute, network, and storage is known as?

Applistructure

Metastructure

Infostructure

Infrastructure

#7. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

The Sarbanes–Oxley Act (SOX)

NIST 800-53

The Gramm-Leach-Bliley Act

FIPS 140-2

#8. Targets US financial and insurance institutions and requires them to protect account holders’ private information.

Sarbanes–Oxley Act (SOX)

FIPS 140-5

Gramm-Leach-Bliley Act

FIPS 140-2

NIST 800-53

#9. Which of the following is not a method of enforcing Lifecycle Management Security?

Ensuring compliance

Backups and business continuity

Dynamic masking

Managing data location/residency

#10. Includes cloud-based database engines and services such as data warehousing and datamining. (Big data)

PaaS

Public Cloud

SaaS

IaaS

#11. The cloud infrastructure is a composition of two or more clouds (private,community, or public) enables data and application portability.

Private Cloud

Hybrid Cloud

Public Cloud

IaaS

Community Cloud

#12. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

False

True

#13. It is best practice to identify requirements, design the architecture, and then identify the gaps based on the capabilities of the underlying cloud platform. True or False

True

False

#14. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

Sarbanes–Oxley Act (SOX)

Network Information Security Directive (NIS Directive)

Directive 95/46/EC of the European (Data Protection Directive)

The Gramm-Leach-Bliley Act

#15. The cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns. It may be managed by the organizations or by a third party and may be located on-premises or off-premises.

Private Cloud

Community Cloud

Public Cloud

Hybrid Cloud

#16. Widely considered to be the gold standard when it comes to security of information systems and their data.

NIST 800-53

ISO 27001, (27001:2013)

FIPS 140-2

Directive 95/46/EC of the European (Data Protection Directive)

#17. The vendor will be responsible for patching, administering, and updating the OS.

SaaS

Paas

IaaS

Private Cloud

#18. Keys are maintained and controlled by the customer at their own location. This offers the highest degree of security for the customer.

Client-side key management

Customer key management

External Key Management

Remote Key Management

#19. The cloud infrastructure is made available to the general public or a large industry group and is owned by an organization selling cloud services.

Hybrid Cloud

Community Cloud

Private Cloud

Public Cloud

#20. The five main phases in secure application design and development include the following except.

Develop

Training

Assign

Design

Test

Define

#21. To establish a A Simple Cloud Security Process Model is it best practice to do the following except.

Identify necessary security and compliance requirements, and any existing controls.

Design and implement controls to fill the gaps

Define the architecture.

Assess the security controls

Identify control gaps.

Identify provider access controls

#22. Transparent Database Encryption (TDE) is used in which of the Cloud Service Models.

PaaS

Private Cloud

IaaS

SaaS

#23. The applications deployed in the cloud and the underlying application services used to build them.

Applistructure

Infrastructure

Infostructure

Metastructure

#24. What are the six stages of the Data Life Cycle?

Archive,Destroy,Use,Store,Share,Create

Create,Archive,Destroy,Use,Store,Share

Create,Store,Use,Share,Archive,Destroy

Store,Share,Create,Archive,Destroy,Use

#25. Includes visualizations and descriptions used to explain cloud security concepts and principles, such as the CSA logical model in this document

Conceptual models or frameworks

Design patterns

Controls models or frameworks

Reference architectures

#26. Forces executives to oversee all accounting practices, it also holds them accountable for fraudulent/deceptive activity.

Payment Card industry (PCI)

Directive 95/46/EC

NIST 800-53

Sarbanes–Oxley Act (SOX)

Gramm-Leach-Bliley Act

#27. Used for publicly high-level report by an independent CPA, a SOC engagement was performed.

Type 1

SOC 1

SOC 3

SOC 2

Type 2

#28. Cloud Data Storage Types include all but the following.

Database

Object storage

Application/platform

Volume storage

File Storage

#29. Rackspace, Microsoft’s Azure, and Amazon Web Services (AWS) are examples of?

SaaS

Public Cloud

Private Cloud

PaaS

#30. Cloud Data Access Controls include all but the following.

Private Access Controls

Management plane

Application level controls

Public and internal sharing controls

#31. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

Controls model

Controls Matrix Model

Conceptual Model

Reference Model

#32. In application security testing involves the following is true, except.

Dynamic Application Security Testing (DAST)

Unit testing, regression testing, and functional tests

Backlogging test results

Code Review

Static Application Security Testing (SAST)

#33. The cloud customer is basically only involved in uploading and processing data in the production environment

SaaS

PaaS

IaaS

Data discovery

#34. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

Community Cloud

SaaS

IaaS

PaaS

#35. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

data recovery implementation

recovery point objective (RPO)

recovery service level (RSL)

recovery point level (RPL)

Torque Bleu Media

Refresh The Page to Try Again!!!

#1. The key difference between cloud and traditional computing is the metastructure. True or False.

#2. Lists cloud security controls and maps them to multiple security and compliance standards.

#3. What are the components of IaaS Encryption (choose all that apply)

#4. The production percentage service level that needs to be restored to meet BCDR objectives in the case of a failure is known as?

#5. A Cloud Access Security Broker(CASB), can handle IAM and key management services for cloud customers, True or False?

#6. The core components of a computing system: compute, network, and storage is known as?

#7. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

#8. Targets US financial and insurance institutions and requires them to protect account holders’ private information.

#9. Which of the following is not a method of enforcing Lifecycle Management Security?

#10. Includes cloud-based database engines and services such as data warehousing and datamining. (Big data)

#11. The cloud infrastructure is a composition of two or more clouds (private,community, or public) enables data and application portability.

#12. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

#13. It is best practice to identify requirements, design the architecture, and then identify the gaps based on the capabilities of the underlying cloud platform. True or False

#14. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

#15. The cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns. It may be managed by the organizations or by a third party and may be located on-premises or off-premises.

#16. Widely considered to be the gold standard when it comes to security of information systems and their data.

#17. The vendor will be responsible for patching, administering, and updating the OS.

#18. Keys are maintained and controlled by the customer at their own location. This offers the highest degree of security for the customer.

#19. The cloud infrastructure is made available to the general public or a large industry group and is owned by an organization selling cloud services.

#20. The five main phases in secure application design and development include the following except.

#21. To establish a A Simple Cloud Security Process Model is it best practice to do the following except.

#22. Transparent Database Encryption (TDE) is used in which of the Cloud Service Models.

#23. The applications deployed in the cloud and the underlying application services used to build them.

#24. What are the six stages of the Data Life Cycle?

#25. Includes visualizations and descriptions used to explain cloud security concepts and principles, such as the CSA logical model in this document

#26. Forces executives to oversee all accounting practices, it also holds them accountable for fraudulent/deceptive activity.

#27. Used for publicly high-level report by an independent CPA, a SOC engagement was performed.

#28. Cloud Data Storage Types include all but the following.

#29. Rackspace, Microsoft’s Azure, and Amazon Web Services (AWS) are examples of?

#30. Cloud Data Access Controls include all but the following.

#31. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

#32. In application security testing involves the following is true, except.

#33. The cloud customer is basically only involved in uploading and processing data in the production environment

#34. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

#35. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

Results

Facebook

Cloud Practice Exam 1

Refresh The Page to Try Again!!!

#1. The key difference between cloud and traditional computing is the metastructure. True or False.

#2. Lists cloud security controls and maps them to multiple security and compliance standards.

#3. What are the components of IaaS Encryption (choose all that apply)

#4. The production percentage service level that needs to be restored to meet BCDR objectives in the case of a failure is known as?

#5. A Cloud Access Security Broker(CASB), can handle IAM and key management services for cloud customers, True or False?

#6. The core components of a computing system: compute, network, and storage is known as?

#7. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

#8. Targets US financial and insurance institutions and requires them to protect account holders’ private information.

#9. Which of the following is not a method of enforcing Lifecycle Management Security?

#10. Includes cloud-based database engines and services such as data warehousing and datamining. (Big data)

#11. The cloud infrastructure is a composition of two or more clouds (private,community, or public) enables data and application portability.

#12. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

#13. It is best practice to identify requirements, design the architecture, and then identify the gaps based on the capabilities of the underlying cloud platform. True or False

#14. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

#15. The cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns. It may be managed by the organizations or by a third party and may be located on-premises or off-premises.

#16. Widely considered to be the gold standard when it comes to security of information systems and their data.

#17. The vendor will be responsible for patching, administering, and updating the OS.

#18. Keys are maintained and controlled by the customer at their own location. This offers the highest degree of security for the customer.

#19. The cloud infrastructure is made available to the general public or a large industry group and is owned by an organization selling cloud services.

#20. The five main phases in secure application design and development include the following except.

#21. To establish a A Simple Cloud Security Process Model is it best practice to do the following except.

#22. Transparent Database Encryption (TDE) is used in which of the Cloud Service Models.

#23. The applications deployed in the cloud and the underlying application services used to build them.

#24. What are the six stages of the Data Life Cycle?

#25. Includes visualizations and descriptions used to explain cloud security concepts and principles, such as the CSA logical model in this document

#26. Forces executives to oversee all accounting practices, it also holds them accountable for fraudulent/deceptive activity.

#27. Used for publicly high-level report by an independent CPA, a SOC engagement was performed.

#28. Cloud Data Storage Types include all but the following.

#29. Rackspace, Microsoft’s Azure, and Amazon Web Services (AWS) are examples of?

#30. Cloud Data Access Controls include all but the following.

#31. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

#32. In application security testing involves the following is true, except.

#33. The cloud customer is basically only involved in uploading and processing data in the production environment

#34. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

#35. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

Results

Share this: