Cloud Practice Exam 1

#1. A guidance document with the primary goal of ensuring that appropriate security requirements and controls are applied to all US federal government information in information management systems

SOC 1

Payment Card industry (PCI)

Gramm-Leach-Bliley Act

Sarbanes–Oxley Act (SOX)

NIST 800-53

#2. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

Reference Model

Controls Matrix Model

Controls model

Conceptual Model

#3. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

PaaS

SaaS

IaaS

Community Cloud

#4. Rackspace, Microsoft’s Azure, and Amazon Web Services (AWS) are examples of?

SaaS

PaaS

Public Cloud

Private Cloud

#5. Which of the following is not a method of enforcing Lifecycle Management Security?

Managing data location/residency

Backups and business continuity

Dynamic masking

Ensuring compliance

#6. The protocols and mechanisms that provide the interface between the infrastructure layer and the other layers.

Infostructure

Infrastructure

Metastructure:

Applistructure

#7. The Act on the Protection of Personal Information (APPI), adopted as early as 2003, was one of the first data protection regulations in Asia.

United States

Japan

Europe

Canada

Russia

#8. Cloud vendor becomes responsible for administering, patching, and updating this software as well as all the infrastructure, computer and storage needs.

SaaS

IaaS

PaaS

NaaS

#9. Cloud customers should also consider implementing some form of egress monitoring in during this phase.

Share

Create

Use

#10. Detects application vulnerabilities by scanning the source code and binaries to detect problems before the code is loaded into memory and run

Encrypting Application security testing (EAST)

Dynamic Application Security Testing (DAST)

Static application security testing (SAST)

#11. Egress Monitoring (DLP) address which of the following?

Select all that apply:

Additional Security

Encryption Enforcement

Regulatory Compliance

Enhanced Monitoring

Policy Enforcement

#12. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

False

True

#13. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

Applistructure

Infrastructure

Infostructure

Metastructure

#14. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

NIST 800-53

The Sarbanes–Oxley Act (SOX)

The Gramm-Leach-Bliley Act

FIPS 140-2

#15. What are the components of PaaS Encryption (choose all that apply)

Select all that apply:

Application layer encryption

Database encryption

Provider-managed encryption

Proxy encryption

#16. Cloud Data Storage Types include all but the following.

Database

Object storage

Volume storage

File Storage

Application/platform

#17. The vendor will be responsible for patching, administering, and updating the OS.

Paas

Private Cloud

SaaS

IaaS

#18. Acts as the glue that binds the technologies together and enables management and configuration remotely of a customer’s cloud environment.

Metastructure

Infastructure

Infostructure

Applistructure

#19. The replacement of the data (or part of the data) with random characters is known as?

Masking

Obfuscation

Randomization

Hashing

Tokenization

#20. Used for Security Availability, processing integrity, and privacy, the controls of an org are in line with security

Type 1

Type 2

SOC 2

SOC 3

SOC 1

#21. Used for publicly high-level report by an independent CPA, a SOC engagement was performed.

SOC 3

SOC 1

Type 2

SOC 2

Type 1

#22. General Data Protection Regulation (GDPR) includes the following except.

Sanctions

Cross-border Data Transfer Restrictions

Accountability Obligations

Breaches of Security

Discrepancies among Member States:

Data Subjects’ Rights:

Encryption Standards

#23. In application security testing involves the following is true, except.

Unit testing, regression testing, and functional tests

Backlogging test results

Dynamic Application Security Testing (DAST)

Code Review

Static Application Security Testing (SAST)

#24. What are the components of IaaS Encryption (choose all that apply)

Select all that apply:

Application layer encryption

Instance-managed encryption:

Externally managed encryption

Client-side encryption

Server-side encryption

#25. Includes cloud-based database engines and services such as data warehousing and datamining. (Big data)

Public Cloud

IaaS

PaaS

SaaS

#26. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

recovery point objective (RPO)

data recovery implementation

recovery point level (RPL)

recovery service level (RSL)

#27. General Data Protection Regulation (GDPR)

Applies to the processing of personal data in the EU/EEA

Applies to the processing of personal data in the Canada

Applies to the processing of personal data in the Australia

Applies to the processing of personal data in the Japan

#28. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

The Gramm-Leach-Bliley Act

Sarbanes–Oxley Act (SOX)

Network Information Security Directive (NIS Directive)

Directive 95/46/EC of the European (Data Protection Directive)

#29. Keys are maintained and controlled by the customer at their own location. This offers the highest degree of security for the customer.

External Key Management

Remote Key Management

Client-side key management

Customer key management

#30. A Cloud Access Security Broker(CASB), can handle IAM and key management services for cloud customers, True or False?

False

True

#31. In Cloud Data Access Controls the management plane consist of the following.

Controls for managing access of users that directly access the cloud platform’s management plane

applications on the cloud platform to design and implement your own controls to manage access

data is shared externally to the public or partners that don’t have direct access to the cloud platform, t

#32. Reusable solutions to particular problems. In security, an example is IaaS log management.

Conceptual models or frameworks

Controls models or frameworks

Design patterns

Reference architectures

#33. DLP implementation in the cloud comes with related difficulties and costs, True or False?

True

False

#34. Full application that’s managed and hosted by the provider. Consumers access it with a web browser, mobile app, or a lightweight client app.

PaaS

IaaS

SaaS

Public Cloud

#35. Determining the costs of compliance should which include the following (choose all that apply)

Select all that apply:

Your organization’s regulatory restrictions.

The industry the organization is in

The type of encryption your company uses

The legislative and contractual requirements mandated for your organization

The types and locations of your customers

Torque Bleu Media

Refresh The Page to Try Again!!!

#1. A guidance document with the primary goal of ensuring that appropriate security requirements and controls are applied to all US federal government information in information management systems

#2. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

#3. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

#4. Rackspace, Microsoft’s Azure, and Amazon Web Services (AWS) are examples of?

#5. Which of the following is not a method of enforcing Lifecycle Management Security?

#6. The protocols and mechanisms that provide the interface between the infrastructure layer and the other layers.

#7. The Act on the Protection of Personal Information (APPI), adopted as early as 2003, was one of the first data protection regulations in Asia.

#8. Cloud vendor becomes responsible for administering, patching, and updating this software as well as all the infrastructure, computer and storage needs.

#9. Cloud customers should also consider implementing some form of egress monitoring in during this phase.

#10. Detects application vulnerabilities by scanning the source code and binaries to detect problems before the code is loaded into memory and run

#11. Egress Monitoring (DLP) address which of the following?

#12. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

#13. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

#14. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

#15. What are the components of PaaS Encryption (choose all that apply)

#16. Cloud Data Storage Types include all but the following.

#17. The vendor will be responsible for patching, administering, and updating the OS.

#18. Acts as the glue that binds the technologies together and enables management and configuration remotely of a customer’s cloud environment.

#19. The replacement of the data (or part of the data) with random characters is known as?

#20. Used for Security Availability, processing integrity, and privacy, the controls of an org are in line with security

#21. Used for publicly high-level report by an independent CPA, a SOC engagement was performed.

#22. General Data Protection Regulation (GDPR) includes the following except.

#23. In application security testing involves the following is true, except.

#24. What are the components of IaaS Encryption (choose all that apply)

#25. Includes cloud-based database engines and services such as data warehousing and datamining. (Big data)

#26. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

#27. General Data Protection Regulation (GDPR)

#28. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

#29. Keys are maintained and controlled by the customer at their own location. This offers the highest degree of security for the customer.

#30. A Cloud Access Security Broker(CASB), can handle IAM and key management services for cloud customers, True or False?

#31. In Cloud Data Access Controls the management plane consist of the following.

#32. Reusable solutions to particular problems. In security, an example is IaaS log management.

#33. DLP implementation in the cloud comes with related difficulties and costs, True or False?

#34. Full application that’s managed and hosted by the provider. Consumers access it with a web browser, mobile app, or a lightweight client app.

#35. Determining the costs of compliance should which include the following (choose all that apply)

Results

Facebook

Cloud Practice Exam 1

Refresh The Page to Try Again!!!

#1. A guidance document with the primary goal of ensuring that appropriate security requirements and controls are applied to all US federal government information in information management systems

#2. a visual representation that helps to illustrate the expected relationship between cause and effect in a financial context

#3. Experiences Data lock-in, in the same way as in SaaS, but in this case the onus is completely on the customer to create compatible export routines.

#4. Rackspace, Microsoft’s Azure, and Amazon Web Services (AWS) are examples of?

#5. Which of the following is not a method of enforcing Lifecycle Management Security?

#6. The protocols and mechanisms that provide the interface between the infrastructure layer and the other layers.

#7. The Act on the Protection of Personal Information (APPI), adopted as early as 2003, was one of the first data protection regulations in Asia.

#8. Cloud vendor becomes responsible for administering, patching, and updating this software as well as all the infrastructure, computer and storage needs.

#9. Cloud customers should also consider implementing some form of egress monitoring in during this phase.

#10. Detects application vulnerabilities by scanning the source code and binaries to detect problems before the code is loaded into memory and run

#11. Egress Monitoring (DLP) address which of the following?

#12. Legal Frameworks Governing Data Protection and Privacy are rooted primarily in location of cloud provider,cloud user, data subject and servers, True or False?

#13. Includes the most change, because it becomes the “virtual infrastructure” that the customer is in complete control of (and responsible for) securing.

#14. A NIST document that describes the process for accrediting and cryptosystems for use by the US federal government.

#15. What are the components of PaaS Encryption (choose all that apply)

#16. Cloud Data Storage Types include all but the following.

#17. The vendor will be responsible for patching, administering, and updating the OS.

#18. Acts as the glue that binds the technologies together and enables management and configuration remotely of a customer’s cloud environment.

#19. The replacement of the data (or part of the data) with random characters is known as?

#20. Used for Security Availability, processing integrity, and privacy, the controls of an org are in line with security

#21. Used for publicly high-level report by an independent CPA, a SOC engagement was performed.

#22. General Data Protection Regulation (GDPR) includes the following except.

#23. In application security testing involves the following is true, except.

#24. What are the components of IaaS Encryption (choose all that apply)

#25. Includes cloud-based database engines and services such as data warehousing and datamining. (Big data)

#26. The amount of data a company would need to maintain and recover in order to function at a level acceptable to management is known as.

#27. General Data Protection Regulation (GDPR)

#28. Establishes a framework to enable networks and information systems to resist, at a given level of confidence, actions that compromise the availability, authenticity, integrity, or confidentiality of stored data.

#29. Keys are maintained and controlled by the customer at their own location. This offers the highest degree of security for the customer.

#30. A Cloud Access Security Broker(CASB), can handle IAM and key management services for cloud customers, True or False?

#31. In Cloud Data Access Controls the management plane consist of the following.

#32. Reusable solutions to particular problems. In security, an example is IaaS log management.

#33. DLP implementation in the cloud comes with related difficulties and costs, True or False?

#34. Full application that’s managed and hosted by the provider. Consumers access it with a web browser, mobile app, or a lightweight client app.

#35. Determining the costs of compliance should which include the following (choose all that apply)

Results

Share this: