EC-Council 312-40 Certified Cloud Security Engineer (CCSE) Online Training
EC-Council 312-40 Online Training
The questions for 312-40 were last updated at Apr 07,2025.
- Exam Code: 312-40
- Exam Name: Certified Cloud Security Engineer (CCSE)
- Certification Provider: EC-Council
- Latest update: Apr 07,2025
Colin Farrell works as a senior cloud security engineer in a healthcare company. His organization has migrated all workloads and data in a private cloud environment. An attacker used the cloud environment as a point to disrupt the business of Colin’s organization. Using intrusion detection prevention systems, antivirus software, and log analyzers, Colin successfully detected the incident; however, a group of users were not able to avail the critical services provided by his organization.
Based on the incident impact level classification scales, select the severity of the incident encountered by Colin’s organization?
- A . High
- B . None
- C . Low
- D . Medium
Sam, a cloud admin, works for a technology company that uses Azure resources. Because Azure contains the resources of numerous organizations and several alerts are received timely, it is difficult for the technology company to identify risky resources, determine their owner, know whether they are needed, and know who pays for them.
How can Sam organize resources to determine this information immediately?
- A . By using tags
- B . By setting up Azure Front Door
- C . By configuring workflow automation
- D . By using ASC Data Connector
Georgia Lyman works as a cloud security engineer in a multinational company. Her organization uses cloud-based services. Its virtualized networks and associated virtualized resources encountered certain capacity limitations that affected the data transfer performance and virtual server communication.
How can Georgia eliminate the data transfer capacity thresholds imposed on a virtual server by its virtualized environment?
- A . By allowing the virtual appliance to bypass the hypervisor and access the I/O card of the physical server directly
- B . By restricting the virtual appliance to bypass the hypervisor and access the I/O card of the physical server directly
- C . By restricting the virtual server to bypass the hypervisor and access the I/O card of the physical server directly
- D . By allowing the virtual server to bypass the hypervisor and access the I/O card of the physical server directly
A client wants to restrict access to its Google Cloud Platform (GCP) resources to a specified IP range by making a trust-list. Accordingly, the client limits GCP access to users in its organization network or grants company auditors access to a requested GCP resource only.
Which of the following GCP services can help the client?
- A . Cloud IDS
- B . VPC Service Controls
- C . Cloud Router
- D . Identity and Access Management
SecureSoft IT Pvt. Ltd. is an IT company located in Charlotte, North Carolina, that develops software for the healthcare industry. The organization generates a tremendous amount of unorganized data such as video and audio files. Kurt recently joined SecureSoft IT Pvt. Ltd. as a cloud security engineer. He manages the organizational data using NoSQL databases.
Based on the given information, which of the following data are being generated by Kurt’s organization?
- A . Metadata
- B . Structured Data
- C . Unstructured Data
- D . Semi-Structured Data
Global InfoSec Solution Pvt. Ltd. is an IT company that develops mobile-based software and applications. For smooth, secure, and cost-effective facilitation of business, the organization uses public cloud services. Now, Global InfoSec Solution Pvt. Ltd. is encountering a vendor lock-in issue.
What is vendor lock-in in cloud computing?
- A . It is a situation in which a cloud consumer cannot switch to another cloud service broker without substantial switching costs
- B . It is a situation in which a cloud consumer cannot switch to a cloud carrier without substantial switching costs
- C . It is a situation in which a cloud service provider cannot switch to another cloud service broker without substantial switching costs
- D . It is a situation in which a cloud consumer cannot switch to another cloud service provider without substantial switching costs
A web server passes the reservation information to an application server and then the application server queries an Airline service.
Which of the following AWS service allows secure hosted queue server-side encryption (SSE), or uses custom SSE keys managed in AWS Key Management Service (AWS KMS)?
- A . Amazon Simple Workflow
- B . Amazon SQS
- C . Amazon SNS
- D . Amazon CloudSearch
A security incident has occurred within an organization’s AWS environment. A cloud forensic investigation procedure is initiated for the acquisition of forensic evidence from the compromised EC2 instances. However, it is essential to abide by the data privacy laws while provisioning any forensic instance and sending it for analysis.
What can the organization do initially to avoid the legal implications of moving data between two AWS regions for analysis?
- A . Create evidence volume from the snapshot
- B . Provision and launch a forensic workstation
- C . Mount the evidence volume on the forensic workstation
- D . Attach the evidence volume to the forensic workstation
The cloud administrator John was assigned a task to create a different subscription for each division of his organization. He has to ensure all the subscriptions are linked to a single Azure AD tenant and each subscription has identical role assignments.
Which Azure service will he make use of?
- A . Azure AD Privileged Identity Management
- B . Azure AD Multi-Factor Authentication
- C . Azure AD Identity Protection
- D . Azure AD Self-Service Password Reset
An organization is developing a new AWS multitier web application with complex queries and table joins.
However, because the organization is small with limited staff, it requires high availability.
Which of the following Amazon services is suitable for the requirements of the organization?
- A . Amazon HSM
- B . Amazon Snowball
- C . Amazon Glacier
- D . Amazon DynamoDB
Latest 312-40 Dumps Valid Version with 125 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
