CCSP exam

What type of host is exposed to the public Internet for a specific reason and hardened to perform only that function for authorized users?A . ProxyB . BastionC . HoneypotD . WAFView AnswerAnswer: B Explanation: A bastion host is a server that is fully exposed to the public Internet, but...

Which of the following concepts refers to a cloud customer paying only for the resources and offerings they use within a cloud environment, and only for the duration that they are consuming them?A . Consumable serviceB . Measured serviceC . Billable serviceD . Metered serviceView AnswerAnswer: B Explanation: Measured service...

Which audit type has been largely replaced by newer approaches since 2011?A . SOC Type 1B . SSAE-16C . SAS-70D . SOC Type 2View AnswerAnswer: C Explanation: SAS-70 reports were replaced in 2011 with the SSAE-16 reports throughout the industry.

What is the best source for information about securing a physical asset's BIOS?A . Security policiesB . Manual pagesC . Vendor documentationD . RegulationsView AnswerAnswer: C Explanation: Vendor documentation from the manufacturer of the physical hardware is the best source of best practices for securing the BIOS.

Which of the following is a commonly used tool for maintaining system configurations?A . MaestroB . OrchestratorC . PuppetD . ConductorView AnswerAnswer: C Explanation: Puppet is a commonly used tool for maintaining system configurations based on policies, and done so from a centralized authority.

Which of the cloud cross-cutting aspects relates to the requirements placed on the cloud provider by the cloud customer for minimum performance standards and requirements that must be met?A . Regulatory requirementsB . SLAsC . AuditabilityD . GovernanceView AnswerAnswer: B Explanation: Whereas a contract spells out general terms and costs...

Which attribute of data poses the biggest challenge for data discovery?A . LabelsB . QualityC . VolumeD . FormatView AnswerAnswer: B Explanation: The main problem when it comes to data discovery is the quality of the data that analysis is being performed against. Data that is malformed, incorrectly stored or...

What is the biggest concern with hosting a key management system outside of the cloud environment?A . ConfidentialityB . PortabilityC . AvailabilityD . IntegrityView AnswerAnswer: C Explanation: When a key management system is outside of the cloud environment hosting the application, availability is a primary concern because any access issues...

Which of the following are the storage types associated with PaaS?A . Structured and freeformB . Volume and objectC . Structured and unstructuredD . Database and file systemView AnswerAnswer: C

In the wake of many scandals with major corporations involving fraud and the deception of investors and regulators, which of the following laws was passed to govern accounting and financial records and disclosures?A . GLBAB . Safe HarborC . HIPAAD . SOXView AnswerAnswer: D Explanation: The Sarbanes-Oxley Act (SOX) regulates...