CSA CCSK Exam Practice Test Instant Access

Question 1

CCM: Cloud Controls Matrix (CCM) is a completely independent cloud

assessment toolkit that does not map any existing standards.

ATrue

BFalse

Answer : B

Question 2

CCM: The Architectural Relevance column in the CCM indicates the applicability of the cloud security control to which of the following elements?

AService Provider or Tenant/Consumer

BPhysical, Network, Compute, Storage, Application or Data

CSaaS, PaaS or IaaS

Answer : C

Question 3

The containment phase of the incident response lifecycle requires taking systems offline.

AFalse

BTrue

Answer : B

Question 4

If in certain litigations and investigations, the actual cloud application or environment itself is relevant to resolving the dispute in the litigation or investigation, how is the information likely to be obtained?

AIt may require a subpoena of the provider directly

BIt would require a previous access agreement

CIt would require an act of war

DIt would require a previous contractual agreement to obtain the application or access to the environment

EIt would never be obtained in this situation

Answer : D

Question 5

When investigating an incident in an Infrastructure as a Service (IaaS) environment, what can the user investigate on their own?

AThe CSP server facility

BThe logs of all customers in a multi-tenant cloud

CThe network components controlled by the CSP

DThe CSP office spaces

ETheir own virtual instances in the cloud

Answer : E

Question 6

Which opportunity helps reduce common application security issues?

AElastic infrastructure

BDefault deny

CDecreased use of micro-services

DSegregation by default

EFewer serverless configurations

Answer : A

Question 7

Which governance domain focuses on proper and adequate incident detection, response, notification, and remediation?

AData Security and Encryption

BInformation Governance

CIncident Response, Notification and Remediation

DCompliance and Audit Management

EInfrastructure Security

Answer : C

CSA CCSK Certificate Of Cloud Security Knowledge Exam Practice Test