Cloud Practice Exam 1

#1. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

False

True

#2. A provider owns the underlying infrastructure, but it’s provisioned and made available solely for the use of the specific community is known as.

Community Cloud

Public Cloud

IaaS

Private Cloud

#3. Provides development or application platforms, such as databases, application platforms (e.g. a place to run Python, PHP, or other code),

Paas

Private Cloud

Community Cloud

SaaS

IaaS

#4. Egress Monitoring (DLP) address which of the following?

Select all that apply:

Additional Security

Encryption Enforcement

Policy Enforcement

Regulatory Compliance

Enhanced Monitoring

#5. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

Conceptual Model

Controls Matrix Model

Reference Model

Controls model

#6. Determining the costs of compliance should which include the following (choose all that apply)

Select all that apply:

The industry the organization is in

Your organization’s regulatory restrictions.

The type of encryption your company uses

The legislative and contractual requirements mandated for your organization

The types and locations of your customers

#7. Targets US financial and insurance institutions and requires them to protect account holders’ private information.

Sarbanes–Oxley Act (SOX)

FIPS 140-5

Gramm-Leach-Bliley Act

FIPS 140-2

NIST 800-53

#8. A guidance document with the primary goal of ensuring that appropriate security requirements and controls are applied to all US federal government information in information management systems

SOC 1

Gramm-Leach-Bliley Act

Payment Card industry (PCI)

NIST 800-53

Sarbanes–Oxley Act (SOX)

#9. What are the components of PaaS Encryption (choose all that apply)

Select all that apply:

Proxy encryption

Application layer encryption

Database encryption

Provider-managed encryption

#10. Lists cloud security controls and maps them to multiple security and compliance standards.

Consensus Assessment Initiative Questionnaire (CAIQ)

Cloud Controls Matrix (CCM)

Content analysis

Enterprise risk management

#11. Detects application vulnerabilities by scanning the source code and binaries to detect problems before the code is loaded into memory and run

Static application security testing (SAST)

Encrypting Application security testing (EAST)

Dynamic Application Security Testing (DAST)

#12. Cloud Data Storage Types include all but the following.

Volume storage

Database

Application/platform

Object storage

File Storage

#13. The vendor will be responsible for patching, administering, and updating the OS.

Private Cloud

SaaS

IaaS

Paas

#14. Used for Security Availability, processing integrity, and privacy, the controls of an org are in line with security

Type 1

SOC 2

SOC 3

SOC 1

Type 2

#15. Reusable solutions to particular problems. In security, an example is IaaS log management.

Conceptual models or frameworks

Controls models or frameworks

Design patterns

Reference architectures

#16. A community cloud can also be provisioned by a third party on behalf of the various members of the community. (FEDramp cloud) True or False?

True

False

#17. The Act on the Protection of Personal Information (APPI), adopted as early as 2003, was one of the first data protection regulations in Asia.

Russia

Canada

Japan

Europe

United States

#18. The cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns. It may be managed by the organizations or by a third party and may be located on-premises or off-premises.

Public Cloud

Private Cloud

Hybrid Cloud

Community Cloud

#19. Transparent Database Encryption (TDE) is used in which of the Cloud Service Models.

IaaS

PaaS

SaaS

Private Cloud

#20. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

True

False

#21. A standard template for cloud providers to document their security and compliance controls is known as?

Cloud Access Security Broker (CASB)

Content Delivery Network (CDN)

Cloud Controls Matrix (CCM

Consensus Assessment Initiative Questionnaire (CAIQ)

#22. One of the core tenants of risk management is that you can manage, transfer, accept, or avoid risks. True or False

False

True

#23. Cryptographic erasure (cryptoshredding) should be used during this phase of the data life cycle.

Use

Store

Share

Destroy

Create

#24. Used for an inspection of the operating effectiveness of the controls.

Type 2

SOC 2

SOC 1

Type 1

SOC 3

#25. A content delivery network (CDN) is a form of data caching, usually near geophysical locations of high use/demand, for copies of data commonly requested by user. True or False

False

True

#26. The production percentage service level that needs to be restored to meet BCDR objectives in the case of a failure is known as?

recovery point objective (RPO)

recovery time gap (RTG)

recovery service level (RSL)

recovery acceptance agreement (RAG)

#27. Privacy laws are either Omnibus-covers all categories of personal data or sectoral;covers only specific categories of personal data. True or False

True

False

#28. Protection of consumer media, such as music, publications, video, movies, and so on, is known as what.

Data Rights Management (DRM)

Metadata Rights Management (MRM)

Information Rights Management (IRM)

Media Rights Management (MDM)

#29. What is the second stage of the data life cycle?

Store

Prevent

Share

#30. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

recovery service level (RSL)

recovery point objective (RPO)

data recovery implementation

recovery point level (RPL)

#31. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

The Gramm-Leach-Bliley Act

FIPS 140-2

NIST 800-53

The Sarbanes–Oxley Act (SOX)

#32. The primary security responsibilities of the cloud provider in compute virtualization are to enforce isolation and maintain a secure virtualization infrastructure. True or False.

False

True

#33. Offers access to a resource pool of fundamental computing infrastructure, such as compute, network, or storage.

IaaS

Hybrid Cloud

Community Cloud

SaaS

Paas

#34. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

Infrastructure

Applistructure

Infostructure

Metastructure

#35. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

Network Information Security Directive (NIS Directive)

The Gramm-Leach-Bliley Act

Directive 95/46/EC of the European (Data Protection Directive)

Sarbanes–Oxley Act (SOX)

Torque Bleu Media

Refresh The Page to Try Again!!!

#1. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

#2. A provider owns the underlying infrastructure, but it’s provisioned and made available solely for the use of the specific community is known as.

#3. Provides development or application platforms, such as databases, application platforms (e.g. a place to run Python, PHP, or other code),

#4. Egress Monitoring (DLP) address which of the following?

#5. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

#6. Determining the costs of compliance should which include the following (choose all that apply)

#7. Targets US financial and insurance institutions and requires them to protect account holders’ private information.

#8. A guidance document with the primary goal of ensuring that appropriate security requirements and controls are applied to all US federal government information in information management systems

#9. What are the components of PaaS Encryption (choose all that apply)

#10. Lists cloud security controls and maps them to multiple security and compliance standards.

#11. Detects application vulnerabilities by scanning the source code and binaries to detect problems before the code is loaded into memory and run

#12. Cloud Data Storage Types include all but the following.

#13. The vendor will be responsible for patching, administering, and updating the OS.

#14. Used for Security Availability, processing integrity, and privacy, the controls of an org are in line with security

#15. Reusable solutions to particular problems. In security, an example is IaaS log management.

#16. A community cloud can also be provisioned by a third party on behalf of the various members of the community. (FEDramp cloud) True or False?

#17. The Act on the Protection of Personal Information (APPI), adopted as early as 2003, was one of the first data protection regulations in Asia.

#18. The cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns. It may be managed by the organizations or by a third party and may be located on-premises or off-premises.

#19. Transparent Database Encryption (TDE) is used in which of the Cloud Service Models.

#20. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

#21. A standard template for cloud providers to document their security and compliance controls is known as?

#22. One of the core tenants of risk management is that you can manage, transfer, accept, or avoid risks. True or False

#23. Cryptographic erasure (cryptoshredding) should be used during this phase of the data life cycle.

#24. Used for an inspection of the operating effectiveness of the controls.

#25. A content delivery network (CDN) is a form of data caching, usually near geophysical locations of high use/demand, for copies of data commonly requested by user. True or False

#26. The production percentage service level that needs to be restored to meet BCDR objectives in the case of a failure is known as?

#27. Privacy laws are either Omnibus-covers all categories of personal data or sectoral;covers only specific categories of personal data. True or False

#28. Protection of consumer media, such as music, publications, video, movies, and so on, is known as what.

#29. What is the second stage of the data life cycle?

#30. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

#31. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

#32. The primary security responsibilities of the cloud provider in compute virtualization are to enforce isolation and maintain a secure virtualization infrastructure. True or False.

#33. Offers access to a resource pool of fundamental computing infrastructure, such as compute, network, or storage.

#34. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

#35. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

Results

Facebook

Cloud Practice Exam 1

Refresh The Page to Try Again!!!

#1. Outsourcing Key Management Keys should be stored with the data they’re protecting. True or False

#2. A provider owns the underlying infrastructure, but it’s provisioned and made available solely for the use of the specific community is known as.

#3. Provides development or application platforms, such as databases, application platforms (e.g. a place to run Python, PHP, or other code),

#4. Egress Monitoring (DLP) address which of the following?

#5. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

#6. Determining the costs of compliance should which include the following (choose all that apply)

#7. Targets US financial and insurance institutions and requires them to protect account holders’ private information.

#8. A guidance document with the primary goal of ensuring that appropriate security requirements and controls are applied to all US federal government information in information management systems

#9. What are the components of PaaS Encryption (choose all that apply)

#10. Lists cloud security controls and maps them to multiple security and compliance standards.

#11. Detects application vulnerabilities by scanning the source code and binaries to detect problems before the code is loaded into memory and run

#12. Cloud Data Storage Types include all but the following.

#13. The vendor will be responsible for patching, administering, and updating the OS.

#14. Used for Security Availability, processing integrity, and privacy, the controls of an org are in line with security

#15. Reusable solutions to particular problems. In security, an example is IaaS log management.

#16. A community cloud can also be provisioned by a third party on behalf of the various members of the community. (FEDramp cloud) True or False?

#17. The Act on the Protection of Personal Information (APPI), adopted as early as 2003, was one of the first data protection regulations in Asia.

#18. The cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns. It may be managed by the organizations or by a third party and may be located on-premises or off-premises.

#19. Transparent Database Encryption (TDE) is used in which of the Cloud Service Models.

#20. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

#21. A standard template for cloud providers to document their security and compliance controls is known as?

#22. One of the core tenants of risk management is that you can manage, transfer, accept, or avoid risks. True or False

#23. Cryptographic erasure (cryptoshredding) should be used during this phase of the data life cycle.

#24. Used for an inspection of the operating effectiveness of the controls.

#25. A content delivery network (CDN) is a form of data caching, usually near geophysical locations of high use/demand, for copies of data commonly requested by user. True or False

#26. The production percentage service level that needs to be restored to meet BCDR objectives in the case of a failure is known as?

#27. Privacy laws are either Omnibus-covers all categories of personal data or sectoral;covers only specific categories of personal data. True or False

#28. Protection of consumer media, such as music, publications, video, movies, and so on, is known as what.

#29. What is the second stage of the data life cycle?

#30. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

#31. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

#32. The primary security responsibilities of the cloud provider in compute virtualization are to enforce isolation and maintain a secure virtualization infrastructure. True or False.

#33. Offers access to a resource pool of fundamental computing infrastructure, such as compute, network, or storage.

#34. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

#35. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

Results

Share this: