ISC2 CCSP Exam Practice Test Instant Access

Question 1

Which of the following frameworks focuses specifically on design implementation and management?

AISO 31000:2009

BISO 27017

CNIST 800-92

DHIPAA

Answer : A

ISO 31000:2009 specifically focuses on design implementation and management. HIPAA refers to health care regulations, NIST 800-92 is about log management, and ISO 27017 is about cloud specific security controls.

Question 2

Maintenance mode requires all of these actions except:

ARemove all active production instances

BEnsure logging continues

CInitiate enhanced security controls

DPrevent new logins

Answer : C

While the other answers are all steps in moving from normal operations to maintenance mode, we do not necessarily initiate any enhanced security controls.

Question 3

Identity and access management (IAM) is a security discipline that ensures which of the following?

AThat all users are properly authorized

BThat the right individual gets access to the right resources at the right time for the right reasons.

CThat all users are properly authenticated

DThat unauthorized users will get access to the right resources at the right time for the right reasons

Answer : B

Options A and C are also correct, but included in B, making B the best choice. D is incorrect, because we don't want unauthorized users gaining access.

Question 4

For performance purposes, OS monitoring should include all of the following except:

ADisk space

BDisk I/O usage

CCPU usage

DPrint spooling

Answer : D

Print spooling is not a metric for system performance; all the rest are.

Question 5

In addition to battery backup, a UPS can offer which capability?

ABreach alert

BConfidentiality

CCommunication redundancy

DLine conditioning

Answer : D

A UPS can provide line conditioning, adjusting power so that it is optimized for the devices it serves and smoothing any power fluctuations; it does not offer any of the other listed functions.

Question 6

What is the cloud service model in which the customer is responsible for administration of the OS?

AQaaS

BSaaS

CPaaS

DIaaS

Answer : D

In IaaS, the cloud provider only owns the hardware and supplies the utilities. The customer is responsible for the OS, programs, and data. In PaaS and SaaS, the provider also owns the OS. There is no QaaS. That is a red herring.

Question 7

Because of multitenancy, specific risks in the public cloud that don't exist in the other cloud service models include all the following except:

ADoS/DDoS

BInformation bleed

CRisk of loss/disclosure due to legal seizures

DEscalation of privilege

Answer : A

DoS/DDoS threats and risks are not unique to the public cloud model.

ISC2 CCSP Certified Cloud Security Professional Exam Practice Test