nerdexam
Cisco

400-007 · Question #136

400-007 Question #136: Real Exam Question with Answer & Explanation

The correct answer is D. software-defined network segmentation. Software-defined network segmentation is an architectural characteristic of secure cloud models, creating logical isolation between workloads to limit lateral threat movement.

Designing Security

Question

What is a characteristic of a secure cloud architecture model?

Options

  • Alimited access to job function
  • Bdedicated and restricted workstations
  • Cmulti-factor authentication
  • Dsoftware-defined network segmentation

Explanation

Software-defined network segmentation is an architectural characteristic of secure cloud models, creating logical isolation between workloads to limit lateral threat movement.

Common mistakes.

  • A. Limiting access by job function describes the principle of least privilege applied to identity and access management - it is an IAM policy control, not a cloud architecture characteristic.
  • B. Dedicated and restricted workstations are an endpoint security control applied to user devices and are not a structural property of cloud architecture design.
  • C. Multi-factor authentication is an identity verification mechanism that strengthens access control but does not describe how the cloud architecture itself is structured or segmented.

Concept tested. Secure cloud architecture - software-defined network segmentation

Reference. https://learn.microsoft.com/en-us/azure/architecture/framework/security/design-network-segmentation

Topics

#cloud security#network segmentation#SDN#cloud architecture

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 400-007 Practice