CSA
CCSK
Q1:
What does it mean if the system or environment is built automatically from a template?
○
A
Nothing.○
B
It depends on how the automation is configured.○
C
Changes made in production are overwritten by the next code or template change.○
D
Changes made in test are overwritten by the next code or template change.○
E
Changes made in production are untouched by the next code or template change.
CSA
CCSK
Q2:
Which of the following statements is true in regards to Data Loss Prevention (DLP)?
○
A
DLP can provide options for quickly deleting all of the data stored in a cloud environment.○
B
DLP can classify all data in a storage repository.○
C
DLP never provides options for how data found in violation of a policy can be handled.○
D
DLP can provide options for where data is stored.○
E
DLP can provide options for how data found in violation of a policy can be handled.
CSA
CCSK
Q3:
Audits should be robustly designed to reflect best practice, appropriate resources, and tested protocols and standards. They should also use what type of auditors?
○
A
Auditors working in the interest of the cloud customer○
B
Independent auditors○
C
Certified by CSA○
D
Auditors working in the interest of the cloud provider○
E
None of the above
CSA
CCSK
Q4:
What should every cloud customer set up with its cloud service provider (CSP) that can be utilized in the event of an incident?
○
A
A data destruction plan○
B
A communication plan○
C
A back-up website○
D
A spill remediation kit○
E
A rainy day fund
CSA
CCSK
Q5:
What are the primary security responsibilities of the cloud provider in compute virtualizations?
○
A
Enforce isolation and maintain a secure virtualization infrastructure○
B
Monitor and log workloads and configure the security settings○
C
Enforce isolation and configure the security settings○
D
Maintain a secure virtualization infrastructure and configure the security settings○
E
Enforce isolation and monitor and log workloads