Cloud Practice Exam 1

#1. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

True

False

#2. The key difference between cloud and traditional computing is the metastructure. True or False.

True

False

#3. Responsible for peering with other cloud services and providers, as well as overseeing and managing federations and federated services.

Cloud Service Provider (CSP)

Inter-Cloud Provider

Cloud Broker

Cloud Access Security Broker (CASB

#4. Protection of consumer media, such as music, publications, video, movies, and so on, is known as what.

Media Rights Management (MDM)

Information Rights Management (IRM)

Data Rights Management (DRM)

Metadata Rights Management (MRM)

#5. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

FIPS 140-2

The Gramm-Leach-Bliley Act

The Sarbanes–Oxley Act (SOX)

NIST 800-53

#6. Categorized and detail specific cloud security controls or categories of controls, such as the CSA CCM

Design patterns

Controls models or frameworks

Reference architectures

Conceptual models or frameworks

#7. What are the components of PaaS Encryption (choose all that apply)

Select all that apply:

Proxy encryption

Provider-managed encryption

Database encryption

Application layer encryption

#8. Used for an inspection of the operating effectiveness of the controls.

SOC 3

Type 2

Type 1

SOC 2

SOC 1

#9. A customer-managed key allows a cloud customer to manage their own encryption key while the provider manages the encryption engine. True or False?

False

True

#10. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

IaaS

PaaS

Community Cloud

SaaS

#11. A standard template for cloud providers to document their security and compliance controls is known as?

Content Delivery Network (CDN)

Cloud Controls Matrix (CCM

Cloud Access Security Broker (CASB)

Consensus Assessment Initiative Questionnaire (CAIQ)

#12. To establish a A Simple Cloud Security Process Model is it best practice to do the following except.

Identify control gaps.

Assess the security controls

Identify provider access controls

Define the architecture.

Design and implement controls to fill the gaps

Identify necessary security and compliance requirements, and any existing controls.

#13. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management.

recovery point objective (RPO)

recovery file assessment

Acceptable Use Policy

recovery service level (RSL)

#14. In Cloud Data Access Controls the management plane consist of the following.

data is shared externally to the public or partners that don’t have direct access to the cloud platform, t

applications on the cloud platform to design and implement your own controls to manage access

Controls for managing access of users that directly access the cloud platform’s management plane

#15. Determining the costs of compliance should which include the following (choose all that apply)

Select all that apply:

The type of encryption your company uses

The industry the organization is in

The types and locations of your customers

The legislative and contractual requirements mandated for your organization

Your organization’s regulatory restrictions.

#16. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

data recovery implementation

recovery service level (RSL)

recovery point objective (RPO)

recovery point level (RPL)

#17. Which of the four methods is not a potential options for handling key management?

Proxy encryption

Hybrid

Cloud provider service

Virtual appliance/software

hardware security module (HSM)

#18. Forces executives to oversee all accounting practices, it also holds them accountable for fraudulent/deceptive activity.

NIST 800-53

Directive 95/46/EC

Gramm-Leach-Bliley Act

Sarbanes–Oxley Act (SOX)

Payment Card industry (PCI)

#19. Privacy laws are either Omnibus-covers all categories of personal data or sectoral;covers only specific categories of personal data. True or False

True

False

#20. Which of the following is not a method of enforcing Lifecycle Management Security?

Managing data location/residency

Backups and business continuity

Ensuring compliance

Dynamic masking

#21. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

Network Information Security Directive (NIS Directive)

Directive 95/46/EC of the European (Data Protection Directive)

The Gramm-Leach-Bliley Act

Sarbanes–Oxley Act (SOX)

#22. The three methods of data discovery are the following.

metadata, labels, and content analysis.

preservation, dispersion and replication

Dynamic. Transactional and Static

Data distribution, labels and e-discovery

#23. The core components of a computing system: compute, network, and storage is known as?

Applistructure

Infostructure

Metastructure

Infrastructure

#24. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

Conceptual Model

Controls Matrix Model

Reference Model

Controls model

#25. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

Metastructure

Infostructure

Applistructure

Infrastructure

#26. The protocols and mechanisms that provide the interface between the infrastructure layer and the other layers.

Infrastructure

Applistructure

Metastructure:

Infostructure

#27. General Data Protection Regulation (GDPR)

Applies to the processing of personal data in the Canada

Applies to the processing of personal data in the Japan

Applies to the processing of personal data in the EU/EEA

Applies to the processing of personal data in the Australia

#28. Multitenant environments; multiple customers will share the underlying resources that are owned and operated by the provider.

Private Cloud

IaaS

PaaS

SaaS

Public Cloud

#29. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

True

False

#30. Data retention policies covers all of the following except.

Storage Technologies

Cost

Duration of Data Storage

Format of the Stored Data

Accessibility of Archives

#31. Replacing sensitive data with unique identification symbols is known as?

Tokenization

obfuscation

Masking

Randomization

#32. The transfer of data from the European Union to the US,It addresses concerns regarding the expansive data collection activities of U.S. intelligence agencies.

Network Information Security (NIS) Directive

EU GDPR

Personal Information Protection and Electronic Documents Act (PIPEDA

The Trans-Atlantic Data Privacy Framework

#33. Cryptographic erasure (cryptoshredding) should be used during this phase of the data life cycle.

Destroy

Create

Store

Use

Share

#34. A content delivery network (CDN) is a form of data caching, usually near geophysical locations of high use/demand, for copies of data commonly requested by user. True or False

True

False

#35. Lists cloud security controls and maps them to multiple security and compliance standards.

Consensus Assessment Initiative Questionnaire (CAIQ)

Cloud Controls Matrix (CCM)

Enterprise risk management

Content analysis

Refresh The Page to Try Again!!!

#1. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

#2. The key difference between cloud and traditional computing is the metastructure. True or False.

#3. Responsible for peering with other cloud services and providers, as well as overseeing and managing federations and federated services.

#4. Protection of consumer media, such as music, publications, video, movies, and so on, is known as what.

#5. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

#6. Categorized and detail specific cloud security controls or categories of controls, such as the CSA CCM

#7. What are the components of PaaS Encryption (choose all that apply)

#8. Used for an inspection of the operating effectiveness of the controls.

#9. A customer-managed key allows a cloud customer to manage their own encryption key while the provider manages the encryption engine. True or False?

#10. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

#11. A standard template for cloud providers to document their security and compliance controls is known as?

#12. To establish a A Simple Cloud Security Process Model is it best practice to do the following except.

#13. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management.

#14. In Cloud Data Access Controls the management plane consist of the following.

#15. Determining the costs of compliance should which include the following (choose all that apply)

#16. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

#17. Which of the four methods is not a potential options for handling key management?

#18. Forces executives to oversee all accounting practices, it also holds them accountable for fraudulent/deceptive activity.

#19. Privacy laws are either Omnibus-covers all categories of personal data or sectoral;covers only specific categories of personal data. True or False

#20. Which of the following is not a method of enforcing Lifecycle Management Security?

#21. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

#22. The three methods of data discovery are the following.

#23. The core components of a computing system: compute, network, and storage is known as?

#24. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

#25. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

#26. The protocols and mechanisms that provide the interface between the infrastructure layer and the other layers.

#27. General Data Protection Regulation (GDPR)

#28. Multitenant environments; multiple customers will share the underlying resources that are owned and operated by the provider.

#29. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

#30. Data retention policies covers all of the following except.

#31. Replacing sensitive data with unique identification symbols is known as?

#32. The transfer of data from the European Union to the US,It addresses concerns regarding the expansive data collection activities of U.S. intelligence agencies.

#33. Cryptographic erasure (cryptoshredding) should be used during this phase of the data life cycle.

#34. A content delivery network (CDN) is a form of data caching, usually near geophysical locations of high use/demand, for copies of data commonly requested by user. True or False

#35. Lists cloud security controls and maps them to multiple security and compliance standards.

Results

Disclaimer

Facebook

Cloud Practice Exam 1

Refresh The Page to Try Again!!!

#1. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

#2. The key difference between cloud and traditional computing is the metastructure. True or False.

#3. Responsible for peering with other cloud services and providers, as well as overseeing and managing federations and federated services.

#4. Protection of consumer media, such as music, publications, video, movies, and so on, is known as what.

#5. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

#6. Categorized and detail specific cloud security controls or categories of controls, such as the CSA CCM

#7. What are the components of PaaS Encryption (choose all that apply)

#8. Used for an inspection of the operating effectiveness of the controls.

#9. A customer-managed key allows a cloud customer to manage their own encryption key while the provider manages the encryption engine. True or False?

#10. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

#11. A standard template for cloud providers to document their security and compliance controls is known as?

#12. To establish a A Simple Cloud Security Process Model is it best practice to do the following except.

#13. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management.

#14. In Cloud Data Access Controls the management plane consist of the following.

#15. Determining the costs of compliance should which include the following (choose all that apply)

#16. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

#17. Which of the four methods is not a potential options for handling key management?

#18. Forces executives to oversee all accounting practices, it also holds them accountable for fraudulent/deceptive activity.

#19. Privacy laws are either Omnibus-covers all categories of personal data or sectoral;covers only specific categories of personal data. True or False

#20. Which of the following is not a method of enforcing Lifecycle Management Security?

#21. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

#22. The three methods of data discovery are the following.

#23. The core components of a computing system: compute, network, and storage is known as?

#24. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

#25. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

#26. The protocols and mechanisms that provide the interface between the infrastructure layer and the other layers.

#27. General Data Protection Regulation (GDPR)

#28. Multitenant environments; multiple customers will share the underlying resources that are owned and operated by the provider.

#29. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

#30. Data retention policies covers all of the following except.

#31. Replacing sensitive data with unique identification symbols is known as?

#32. The transfer of data from the European Union to the US,It addresses concerns regarding the expansive data collection activities of U.S. intelligence agencies.

#33. Cryptographic erasure (cryptoshredding) should be used during this phase of the data life cycle.

#34. A content delivery network (CDN) is a form of data caching, usually near geophysical locations of high use/demand, for copies of data commonly requested by user. True or False

#35. Lists cloud security controls and maps them to multiple security and compliance standards.

Results

Share this: