NEW QUESTION 1
Tokenization requires two distinct ______.
Response:

• A. Authentication factors
• B. Databases
• C. Encryption keys
• D. Personnel

Answer: B

NEW QUESTION 2
Who should be the only entity allowed to declare that an organization can return to normal following contingency or BCDR operations?
Response:

• A. Regulators
• B. Law enforcement
• C. The incident manager
• D. Senior management

Answer: D

NEW QUESTION 3
Application virtualization can typically be used for .

• A. Denying access to untrusted users
• B. Detecting and mitigating DDoS attacks
• C. Replacing encryption as a necessary control
• D. Running an application on an endpoint without installing it

Answer: D

NEW QUESTION 4
There are two general types of smoke detectors. Which type uses a small portion of radioactive material? Response:

• A. Photoelectric
• B. Ionization
• C. Electron pulse
• D. Integral field

Answer: B

NEW QUESTION 5
What are the phases of a software development lifecycle process model? Response:

• A. Planning and requirements analysis, define, design, develop, testing, and maintenance
• B. Define, planning and requirements analysis, design, develop, testing, and maintenance
• C. Planning and requirements analysis, define, design, testing, develop, and maintenance
• D. Planning and requirements analysis, design, define, develop, testing, and maintenance

Answer: A

NEW QUESTION 6
Who is the entity identified by personal data? Response:

• A. The data owner
• B. The data processor
• C. The data custodian
• D. The data subject

Answer: D

NEW QUESTION 7
The Cloud Security Alliance (CSA) publishes the Notorious Nine, a list of common threats to organizations participating in cloud computing.
According to the CSA, what is one reason the threat of insecure interfaces and APIs is so prevalent in cloud computing?
Response:

• A. Cloud customers and third parties are continually enhancing and modifying APIs.
• B. APIs can have automated settings.
• C. It is impossible to uninstall APIs.
• D. APIs are a form of malware.

Answer: A

NEW QUESTION 8
With cloud computing crossing many jurisdictional boundaries, it is a virtual certainty that conflicts will arise between differing regulations. What is the major impediment to resolving conflicts between multiple jurisdictions to form an overall policy?
Response:

• A. Language differences
• B. Technologies used
• C. Licensing issues
• D. Lack of international authority

Answer: D

NEW QUESTION 9
Who operates the management plane? Response:

• A. Regulators
• B. End consumers
• C. Privileged users
• D. Privacy data subjects

Answer: C

NEW QUESTION 10
The Cloud Security Alliance (CSA) Security, Trust, and Assurance Registry (STAR) program has ______ tiers.
Response:

• A. Two
• B. Three
• C. Four
• D. Eight

Answer: B

NEW QUESTION 11
Which of the following is a method for apportioning resources that involves prioritizing resource requests to resolve contention situations?
Response:

• A. Reservations
• B. Shares
• C. Cancellations
• D. Limits

Answer: B

NEW QUESTION 12
Which of the following is the recommended operating range for temperature and humidity in a data center?
Response:

• A. Between 62 °F - 81 °F and 40% and 65% relative humidity
• B. Between 64 °F - 81 °F and 40% and 60% relative humidity
• C. Between 64 °F - 84 °F and 30% and 60% relative humidity
• D. Between 60 °F - 85 °F and 40% and 60% relative humidity

Answer: B

NEW QUESTION 13
Which of the following practices can enhance both operational capabilities and configuration management efforts?
Response:

• A. Regular backups
• B. Constant uptime
• C. Multifactor authentication
• D. File hashes

Answer: D

NEW QUESTION 14
Designers making applications for the cloud have to take into consideration risks and operational constraints that did not exist or were not as pronounced in the legacy environment.
Which of the following is an element cloud app designers may have to consider incorporating in software for the cloud that might not have been as important in the legacy environment?
Response:

• A. IAM capability
• B. DDoS resistance
• C. Encryption for data at rest and in motion
• D. Field validation

Answer: C

NEW QUESTION 15
Security best practices in a virtualized network environment would include which of the following? Response:

• A. Using distinct ports and port groups for various VLANs on a virtual switch rather than running them through the same port
• B. Running iSCSI traffic unencrypted in order to have it observed and monitored by NIDS
• C. Adding HIDS to all virtual guests
• D. Hardening all outward-facing firewalls in order to make them resistant to attack

Answer: A

NEW QUESTION 16
The destruction of a cloud customer’s data can be required by all of the following except ______.
Response:

• A. Statute
• B. Regulation
• C. The cloud provider’s policy
• D. Contract

Answer: C

NEW QUESTION 17
Your company maintains an on-premises data center for daily production activities but wants to use a cloud service to augment this capability during times of increased demand (cloud bursting).
Which deployment model would probably best suit the company’s needs? Response:

• A. Public
• B. Private
• C. Community
• D. Hybrid

Answer: D