CSA CCSK Exam Practice Test Instant Access

Question 1

In the cloud provider and consumer relationship, which entity

manages the virtual or abstracted infrastructure?

AOnly the cloud consumer

BOnly the cloud provider

CBoth the cloud provider and consumer

DIt is determined in the agreement between the entities

EIt is outsourced as per the entity agreement

Answer : C

Question 2

How can key management be leveraged to prevent cloud providers from inappropriately accessing customer data?

AUse strong multi-factor authentication

BSecure backup processes for key management systems

CSegregate keys from the provider hosting data

DStipulate encryption in contract language

ESelect cloud providers within the same country as customer

Answer : C

Question 3

Vulnerability assessments cannot be easily integrated into CI/CD pipelines because of provider restrictions.

AFalse

BTrue

Answer : A

Question 4

What type of information is contained in the Cloud Security Alliance's Cloud Control Matrix?

ANetwork traffic rules for cloud environments

BA number of requirements to be implemented, based upon numerous standards and regulatory requirements

CFederal legal business requirements for all cloud operators

DA list of cloud configurations including traffic logic and efficient routes

EThe command and control management hierarchy of typical cloud company

Answer : B

Question 5

When designing an encryption system, you should start with a threat model.

AFalse

BTrue

Answer : B

Question 6

For third-party audits or attestations, what is critical for providers to publish and customers to evaluate?

AScope of the assessment and the exact included features and services for the assessment

BProvider infrastructure information including maintenance windows and contracts

CNetwork or architecture diagrams including all end point security devices in use

DService-level agreements between all parties

EFull API access to all required services

Answer : C

Question 7

CCM: The Architectural Relevance column in the CCM indicates the applicability of the cloud security control to which of the following elements?

AService Provider or Tenant/Consumer

BPhysical, Network, Compute, Storage, Application or Data

CSaaS, PaaS or IaaS

Answer : C

CSA Certificate Of Cloud Security Knowledge Exam Practice Test