EC-Council 312-40 Certified Cloud Security Engineer (CCSE) Online Training
EC-Council 312-40 Online Training
The questions for 312-40 were last updated at Apr 25,2025.
- Exam Code: 312-40
- Exam Name: Certified Cloud Security Engineer (CCSE)
- Certification Provider: EC-Council
- Latest update: Apr 25,2025
Jerry Mulligan is employed by an IT company as a cloud security engineer. In 2014, his organization migrated all applications and data from on-premises to a cloud environment. Jerry would like to perform penetration testing to evaluate the security across virtual machines, installed apps, and OSes in the cloud environment, including conducting various security assessment steps against risks specific to the cloud that could expose them to serious threats.
Which of the following cloud computing service models does not allow cloud penetration testing (CPEN) to Jerry?
- A . DBaaS
- B . laaS
- C . PaaS
- D . SaaS
SecAppSol Pvt. Ltd. is a cloud software and application development company located in Louisville, Kentucky. The security features provided by its previous cloud service provider was not satisfactory, and in 2012, the organization became a victim of eavesdropping. Therefore, SecAppSol Pvt. Ltd.
changed its cloud service provider and adopted AWS cloud-based services owing to its robust and
cost-effective security features.
How does SecAppSol Pvt. Ltd.’s security team encrypt the traffic
between the load balancer and client that initiate
SSL or TLS sessions?
- A . By enabling Amazon GuardDuty
- B . By enabling HTTPS listener
- C . By enabling Cloud Identity Aware Proxy
- D . By enabling RADIUS Authentication
Martin Sheen is a senior cloud security engineer in SecGlob Cloud Pvt. Ltd. Since 2012, his organization has been using AWS cloud-based services. Using an intrusion detection system and antivirus software, Martin noticed that an attacker is trying to breach the security of his organization. Therefore, Martin would like to identify and protect the sensitive data of his organization. He requires a fully managed data security service that supports S3 storage and provides an inventory of publicly shared buckets, unencrypted buckets, and the buckets shared with AWS accounts outside his organization.
Which of the following Amazon services fulfills Martin’s requirement?
- A . Amazon GuardDuty
- B . Amazon Macie
- C . Amazon Inspector
- D . Amazon Security Hub
SevocSoft Private Ltd. is an IT company that develops software and applications for the banking sector. The security team of the organization found a security incident caused by misconfiguration in Infrastructure-as-Code (laC) templates. Upon further investigation, the security team found that the server configuration was built using a misconfigured laC template, which resulted in security breach and exploitation of the organizational cloud resources.
Which of the following would have prevented this security breach and exploitation?
- A . Testing of laC Template
- B . Scanning of laC Template
- C . Striping of laC Template
- D . Mapping of laC Template
Rebecca Gibel has been working as a cloud security engineer in an IT company for the past 5 years. Her organization uses cloud-based services. Rebecca’s organization contains personal information about its clients,which is encrypted and stored in the cloud environment. The CEO of her organization has asked Rebecca to delete the personal information of all clients who utilized their services between 2011 and 2015. Rebecca deleted the encryption keys that are used to encrypt the original data; this made the data unreadable and unrecoverable.
Based on the given information, which deletion method was implemented by Rebecca?
- A . Data Scrubbing
- B . Nulling Out
- C . Data Erasure
- D . Crypto-Shredding
Latest 312-40 Dumps Valid Version with 125 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
