Advanced CCSP Cloud Security Professional Certification Exam practice questions and answers for free online Page 10 -- Infibee

General Knowledge
General Aptitude
General English
Networking
Interview Questions
- .NET
- Java
- ASP.NET
- C++
- Perl
- Python
- Ruby and Rails
- Struts
- Core Java
- Hibernate
- DB2
- MS SQL Server
- MySQL
- Oracle
- SQL
- DBMS
- Data Warehousing
- Data structures and Algorithms
- CCNA
- CCNP Routing
- CCNP Switching
- Internetworking
- Border Gateway Protocol
- MCSE
- Exchange Server
- Windows Server 2008
- DNS & Active Directory
- Firewall Questions
- Unix
- Linux Server Administrator
- Linux System Administrator
- Linux File Manipulation
Database

CISA

Home
Security
CCSP

46.

The cloud customer and provider negotiate their respective responsibilities and rights regarding the capabilities and data of the cloud service. Where is the eventual agreement codified?

A.
RMF
B.
Contract
C.
MOU
D.
BIA

Answer & Explanation
Report

Answer : [B]
Explanation :

The contract codifies the rights and responsibilities of the parties involved upon completion of negotiation. The RMF aids in risk analysis and design of the environment. An MOU is shared between parties for a number of possible reasons. The BIA aids in risk assessment, DC/BR efforts, and selection of security controls.

Report

Name

47.

In attempting to provide a layered defense, the security practitioner should convince senior management to include security controls of which type?

A.
Technological
B.
Physical
C.
Administrative
D.
All of the above

Answer & Explanation
Report

Answer : [D]
Explanation :

Layered defense calls for a diverse approach to security

Report

Name

48.

Which of the following is considered an administrative control?

A.
Access control process
B.
Keystroke logging
C.
Door locks
D.
Biometric authentication

Answer & Explanation
Report

Answer : [A]
Explanation :

A process is an administrative control; sometimes, the process includes elements of other types of controls (in this case, the access control mechanism might be a technical control, or it might be a physical control), but the process itself is administrative. Keystroke logging is a technical control (or an attack, if done for malicious purposes, and not for auditing); door locks are a physical control; and biometric authentication is a technological control. This is a tricky question.

Report

Name

49.

Which of the following is considered a technological control?

A.
Firewall software
B.
Fireproof safe
C.
Fire extinguisher
D.
Firing personnel

Answer & Explanation
Report

Answer : [A]
Explanation :

A firewall is a technological control. The safe and extinguisher are physical controls, and firing someone is an administrative control.

Report

Name

50.

Which of the following is considered a physical control?

A.
Carpets
B.
Ceilings
C.
Doors
D.
Fences

Answer & Explanation
Report

Answer : [D]
Explanation :

Fences are physical controls; carpets and ceilings are architectural features, and a door is not necessarily a control: the lock on the door would be a physical security control. Although you might think of a door as a potential answer, the best answer is the fence; the exam will have questions where more than one answer is correct, and the answer that will score you points is the one that is most correct.

Report

Name

Pages
1
2
3
4
5
6
7
8
9
10

Sitemap