CCSK Exam Dumps - Certificate of Cloud Security Knowledge (v4.0)

Service Provider or Tenant/Consumer

Physical, Network, Compute, Storage, Application or Data

SaaS, PaaS or IaaS

The on demand self-service nature of cloud computing environments.

Privacy concerns for co-tenants regarding the collection and analysis of telemetry and artifacts associated with an incident.

The possibility of data crossing geographic or jurisdictional boundaries.

Object-based storage in a private cloud.

The resource pooling practiced by cloud services, in addition to the rapid elasticity offered by cloud infrastructures.

False

True

You might not have the ability or administrative rights to search or access all hosted data.

The cloud provider must conduct the search with the full administrative controls.

All cloud-hosted email accounts are easily searchable.

Search and discovery time is always factored into a contract between the consumer and provider.

You can easily search across your environment using any E-Discovery tool.

Software Development Kits (SDKs)

Resource Description Framework (RDF)

Extensible Markup Language (XML)

Application Binary Interface (ABI)

Application Programming Interface (API)

It reduces hardware costs

It provides dynamic and granular policies with less management overhead

It locks down access and provides stronger data security

It reduces the blast radius of a compromised system

It enables you to configure applications around business groups

The metrics defining the service level required to achieve regulatory objectives.

The duration of time that a security violation can occur before the client begins assessing regulatory fines.

The cost per incident for security breaches of regulated information.

The regulations that are pertinent to the contract and how to circumvent them.

The type of security software which meets regulations and the number of licenses that will be needed.

False

True

Access control

Federated Identity Management

Authoritative source

Entitlement

Authentication

The development of a routine that covers all necessary security measures.

The diligent habits of good security practices and recording of the same.

The timely and efficient filing of security reports.

The awareness and adherence to obligations, including the assessment and prioritization of corrective actions deemed necessary and appropriate.

The process of completing all forms and paperwork necessary to develop a defensible paper trail.

Inspect and account for risks inherited from other members of the cloud supply chain and take active measures to mitigate and contain risks through operational resiliency.

Respect the interdependency of the risks inherent in the cloud supply chain and communicate the corporate risk posture and readiness to consumers and dependent parties.

Negotiate long-term contracts with companies who use well-vetted software application to avoid the transient nature of the cloud environment.

Provide transparency to stakeholders and shareholders demonstrating fiscal solvency and organizational transparency.

Both B and C.

The hypervisor

Virtualization management components apart from the hypervisor

Configuration and VM sprawl issues

All of the above

The devices used to access data have different storage formats.

The devices used to access data use a variety of operating systems and may have different programs installed on them.

The device may affect data dispersion.

The devices used to access data use a variety of applications or clients and may have different security characteristics.

The devices used to access data may have different ownership characteristics.