- Email support@dumps4free.com
Topic 1: Exam Pool A
Of the following, which is probably the most significant risk in a managed cloud
environment?
Response:
A.
DDoS
B.
Management plane breach
C.
Guest escape
D.
Physical attack on the utility service lines
Management plane breach
You have been tasked with creating an audit scope statement and are making your
project outline. Which of the following is NOT typically included in an audit scope
statement?
A.
Statement of purpose
B.
Deliverables
C.
Classification
D.
Costs
Costs
Cloud environments pose many unique challenges for a data custodian to properly
adhere to policies and the use of data. What poses the biggest challenge for a data
custodian with a PaaS implementation, over and above the same concerns with
IaaS?
Response:
A.
Access to systems
B.
Knowledge of systems
C.
Data classification rules
D.
Contractual requirements
Knowledge of systems
Log data should be protected ____________.
Response:
A.
One level below the sensitivity level of the systems from which it was collected
B.
At least at the same sensitivity level as the systems from which it was collected
C.
With encryption in transit, at rest, and in use
D.
According to NIST guidelines
At least at the same sensitivity level as the systems from which it was collected
Which of the following is not a reason for conducting audits?
A.
Regulatory compliance
B.
User satisfaction
C.
Determination of service quality
D.
Security assurance
User satisfaction
| Page 9 out of 103 Pages |
| Previous |