
CCSP PDF Pass Leader, CCSP Latest Real Test
Valid CCSP Test Answers & CCSP Exam PDF
NEW QUESTION 214
Which of the following terms is NOT a commonly used category of risk acceptance?
- A. Accepted
- B. Minimal
- C. Moderate
- D. Critical
Answer: A
Explanation:
Explanation/Reference:
Explanation
Accepted is not a risk acceptance category. The risk acceptance categories are minimal, low, moderate, high, and critical.
NEW QUESTION 215
All of the following are activities that should be performed when capturing and maintaining an accurate, secure system baseline, except ____________.
Response:
- A. Document all baseline configuration elements and versioning data
- B. Audit the baseline to ensure that all configuration items have been included and applied correctly
- C. Capture an image of the baseline system for future reference/versioning/rollback purposes
- D. Impose the baseline throughout the environment
Answer: D
NEW QUESTION 216
Why are PaaS environments at a higher likelihood of suffering backdoor
vulnerabilities?
- A. They are often used for software development.
- B. They have multitenancy.
- C. They are scalable.
- D. They rely on virtualization.
Answer: A
NEW QUESTION 217
What controls the formatting and security settings of a volume storage system within a cloud environment?
- A. SAN host controller
- B. Operating system of the host
- C. Management plane
- D. Hypervisor
Answer: B
Explanation:
Explanation
Once a storage LUN is allocated to a virtual machine, the operating system of that virtual machine will format, manage, and control the file system and security of the data on that LUN.
NEW QUESTION 218
The WS-Security standards are built around all of the following standards except which one?
- A. WDSL
- B. SAML
- C. SOAP
- D. XML
Answer: B
Explanation:
Explanation
The WS-Security specifications, as well as the WS-Federation system, are built upon XML, WDSL, and SOAP. SAML is a very similar protocol that is used as an alternative to WS.XML, WDSL, and SOAP are all integral to the WS-Security specifications.
NEW QUESTION 219
Which cloud deployment model would be ideal for a group of universities looking to work together, where each university can gain benefits according to its specific needs?
- A. Private
- B. Hybrid
- C. Community
- D. Public
Answer: C
Explanation:
A community cloud is owned and maintained by similar organizations working toward a common goal. In this case, the universities would all have very similar needs and calendar requirements, and they would not be financial competitors of each other. Therefore, this would be an ideal group for working together within a community cloud. A public cloud model would not work in this scenario because it is designed to serve the largest number of customers, would not likely be targeted toward specific requirements for individual customers, and would not be willing to make changes for them. A private cloud could accommodate such needs, but would not meet the criteria for a group working together, and a hybrid cloud spanning multiple cloud providers would not fit the specifics of the question.
NEW QUESTION 220
Which ITIL component is focused on anticipating predictable problems and ensuring that configurations and operations are in place to prevent these problems from ever occurring?
- A. Problem management
- B. Configuration management
- C. Availability management
- D. Continuity management
Answer: A
Explanation:
Problem management is focused on identifying and mitigating known problems and deficiencies before they are able to occur, as well as on minimizing the impact of incidents that cannot be prevented.
Continuity management (or business continuity management) is focused on planning for the successful restoration of systems or services after an unexpected outage, incident, or disaster.
Availability management is focused on making sure system resources, processes, personnel, and toolsets are properly allocated and secured to meet SLA requirements. Configuration management tracks and maintains detailed information about all IT components within an organization.
NEW QUESTION 221
Hardening the operating system refers to all of the following except:
- A. Closing unused ports
- B. Removing antimalware agents
- C. Limiting administrator access
- D. Removing unnecessary services and libraries
Answer: B
Explanation:
Explanation
Removing antimalware agents. Hardening the operating system means making it more secure. Limiting administrator access, closing unused ports, and removing unnecessary services and libraries all have the potential to make an OS more secure. But removing antimalware agents would actually make the system less secure. If anything, antimalware agents should be added, not removed.
NEW QUESTION 222
SOC Type 1 reports are considered "restricted use," in that they are intended only for limited audiences and purposes.
Which of the following is NOT a population that would be appropriate for a SOC Type 1 report?
- A. Auditors
- B. The service organization
- C. Potential clients
- D. Current clients
Answer: C
Explanation:
Explanation/Reference:
Explanation:
Potential clients are not served by SOC Type 1 audits. A Type 2 or Type 3 report would be appropriate for potential clients. SOC Type 1 reports are intended for restricted use, where only the service organization itself, current clients, or auditors would have access to them.
NEW QUESTION 223
Which cloud storage type is typically used to house virtual machine images that are used throughout the environment?
- A. Volume
- B. Object
- C. Unstructured
- D. Structured
Answer: B
Explanation:
Object storage is typically used to house virtual machine images because it is independent from other systems and is focused solely on storage. It is also the most appropriate for handling large individual files.
Volume storage, because it is allocated to a specific host, would not be appropriate for the storing of virtual images. Structured and unstructured are storage types specific to PaaS and would not be used for storing items used throughout a cloud environment.
NEW QUESTION 224
What are the U.S. Commerce Department controls on technology exports known as?
- A. ITAR
- B. EAL
- C. EAR
- D. DRM
Answer: A
Explanation:
Explanation/Reference:
Explanation:
EAR is a Commerce Department program. Evaluation assurance levels are part of the Common Criteria standard from ISO. Digital rights management tools are used for protecting electronic processing of intellectual property.
NEW QUESTION 225
User access to the cloud environment can be administered in all of the following ways except:
- A. Third party provides administration on behalf of the customer
- B. Customer provides administration on behalf of the provider
- C. Provider provides administration on behalf the customer
- D. Customer directly administers access
Answer: B
NEW QUESTION 226
What type of masking strategy involves replacing data on a system while it passes between the data and application layers?
- A. Static
- B. Replication
- C. Dynamic
- D. Duplication
Answer: C
Explanation:
Explanation
With dynamic masking, production environments are protected with the masking process being implemented between the application and data layers of the application. This allows for a masking translation to take place live in the system and during normal application processing of data.
NEW QUESTION 227
What type of data does data rights management (DRM) protect?
- A. Consumer
- B. Financial
- C. PII
- D. Healthcare
Answer: A
Explanation:
DRM applies to the protection of consumer media, such as music, publications, video, movies, and soon.
NEW QUESTION 228
The physical layout of a cloud data center campus should include redundancies of all the following except ____________.
- A. Generator fuel storage
- B. HVAC units
- C. Generators
- D. Points of personnel ingress
Answer: D
NEW QUESTION 229
......
CCSP Dumps Ensure Your Passing: https://www.real4prep.com/CCSP-exam.html
CCSP exam dumps and online Test Engine: https://drive.google.com/open?id=1IMCTQsaMIFJ7-vdd8c7-3p5FoqswsRyi