Browse Exams Pricing

ExamsCCSPQuestions

CCSP Exam Questions

876 real CCSP exam questions with expert-verified answers and explanations. Page 1 of 18.

Question #1Cloud Application Security
Which of the following should occur at each stage of the SDLC?
SDLCVerification and ValidationQuality AssuranceApplication Security
Question #2Cloud Platform & Infrastructure Security
Application virtualization can typically be used for ____________.
Application virtualizationSoftware deploymentVirtualization
Question #3Cloud Application Security
During which stage of the SDLC process should security be consulted and begin its initial involvement?
SDLCSecure SDLCSecurity RequirementsShift Left Security
Question #4Cloud Platform & Infrastructure Security
A firewall can use all of the following techniques for controlling traffic except:
FirewallNetwork securityTraffic controlSecurity controls
Question #5Cloud Application Security
Which of the following is not typically included as a basic phase of the software development life cycle?
Software Development Life CycleSDLC phasesApplication Security
Question #6Legal, Risk and Compliance
Each of the following are dependencies that must be considered when reviewing the BIA after cloud migration except:
Business Impact AnalysisCloud Provider DependenciesRisk ManagementBusiness Continuity
Question #7Cloud Platform & Infrastructure Security
Which of the following practices can enhance both operational capabilities and configuration management efforts?
File Integrity MonitoringConfiguration ManagementOperational SecurityHashing
Question #8Cloud Security Operations
Which strategy involves using a fake production system to lure attackers in order to learn about their tactics?
HoneypotsThreat IntelligenceSecurity Monitoring
Question #9Legal, Risk and Compliance
The Cloud Security Alliance (CSA) publishes the Notorious Nine, a list of common threats to organizations participating in cloud computing. According to the CSA, an organization th...
Data BreachIncident Response CostsRegulatory ComplianceRisk Management
Question #10Legal, Risk and Compliance
What does nonrepudiation mean?
NonrepudiationSecurity PrinciplesAccountability
Question #11Cloud Security Operations
Vulnerability scans are dependent on ________ in order to function.
Vulnerability ScanningVulnerability ManagementSecurity OperationsSignatures
Question #12Cloud Concepts, Architecture and Design
Which concept pertains to cloud customers paying only for the resources they use and consume, and only for the duration they are using them?
Cloud characteristicsMeasured servicePay-per-useNIST cloud model
Question #13Cloud Concepts, Architecture and Design
Which of the following is a file server that provides data access to multiple, heterogeneous machines/users on the network?
Network-attached storage (NAS)Storage typesCloud storage conceptsData access
Question #14Legal, Risk and Compliance
What sort of legal enforcement may the Payment Card Industry (PCI) Security Standards Council not bring to bear against organizations that fail to comply with the Payment Card Indu...
PCI DSSCompliance EnforcementLegal ConsequencesPayment Card Security
Question #15Cloud Application Security
DAST checks software functionality in ____________.
DASTApplication Security TestingRuntime AnalysisCloud Application Security
Question #16Legal, Risk and Compliance
Who is the entity identified by personal data?
Data PrivacyData RolesPersonal DataData Subject
Question #17Legal, Risk and Compliance
SOX was enacted because of which of the following?
SOXComplianceRegulationCorporate Governance
Question #18Cloud Application Security
Which of the following top security threats involves attempting to send invalid commands to an application in an attempt to get the application to execute the code?
Injection AttacksApplication SecurityWeb Application VulnerabilitiesCode Execution
Question #19Cloud Application Security
Which of the following best describes SAML?
SAMLAuthenticationAuthorizationIdentity Federation
Question #20Cloud Concepts, Architecture and Design
Using one cloud provider for your operational environment and another for your BCDR backup will also give you the additional benefit of ____________.
Multi-cloudVendor lock-inBCDR strategyCloud architecture
Question #21Cloud Platform and Infrastructure Security
Heating, ventilation, and air conditioning (HVAC) systems cool the data center by pushing warm air into ____________.
Data center coolingHVAC systemsPhysical infrastructure
Question #22Cloud Platform & Infrastructure Security
You work for a government research facility. Your organization often shares data with other government research organizations. You would like to create a single sign-on experience...
Federated IdentitySingle Sign-On (SSO)Identity BrokerIdentity and Access Management (IAM)
Question #23Legal, Risk and Compliance
You are the security policy lead for your organization, which is considering migrating from your on- premises, legacy environment into the cloud. You are reviewing the Cloud Securi...
CSA CCMCloud Security FrameworksRegulatory Compliance
Question #24Cloud Platform & Infrastructure Security
Which of the following is the recommended operating range for temperature and humidity in a data center?
Data Center Environmental ControlsTemperature and Humidity StandardsPhysical Infrastructure Security
Question #25Cloud Platform & Infrastructure Security
____________ can often be the result of inadvertent activity.
Cloud sprawlResource managementInadvertent activityAsset management
Question #26Cloud Concepts, Architecture and Design
The Cloud Security Alliance (CSA) publishes the Notorious Nine, a list of common threats to organizations participating in cloud computing. According to the CSA, what is one reason...
CSA Notorious NineAPI SecurityCloud InterfacesCloud Architecture
Question #27Cloud Concepts, Architecture and Design
Which of the following storage types are used with an Infrastructure as a Service (IaaS) solution?
IaaSCloud StorageStorage TypesVolume and Object Storage
Question #28Cloud Platform & Infrastructure Security
Which of the following management risks can make an organization's cloud environment unviable?
VM sprawlVirtualization risksCloud resource managementInfrastructure security
Question #29Cloud Platform & Infrastructure Security
You are performing an audit of the security controls used in a cloud environment. Which of the following would best serve your purpose?
Security AuditingCloud Security ControlsConfiguration ManagementVirtual Machine Security
Question #30Cloud Concepts, Architecture and Design
Which of the following is not a factor an organization might use in the cost-benefit analysis when deciding whether to migrate to a cloud environment?
Cloud MigrationCost-Benefit AnalysisCloud EconomicsCapEx vs OpEx
Question #31Cloud Security Operations
A honeypot can be used for all the following purposes except ____________.
HoneypotThreat IntelligenceDeception TechnologySecurity Operations
Question #32Cloud Concepts, Architecture and Design
Which cloud service category offers the most customization options and control to the cloud customer?
Cloud Service ModelsIaaSCustomer ControlCustomization
Question #33Cloud Concepts, Architecture and Design
A virtual network interface card (NIC) exists at layer __________ of the OSI model.
OSI ModelVirtual NICNetwork FundamentalsCloud Networking
Question #34Cloud Data Security
You are the security manager of a small firm that has just purchased a DLP solution to implement in your cloud-based production environment. In order to increase the security value...
DLPDRMSIEMSecurity Controls Integration
Question #35Cloud Application Security
Static software security testing typically uses __________ as a measure of how thorough the testing was.
Static Application Security TestingSASTCode coverageSoftware testing metrics
Question #36Cloud Platform & Infrastructure Security
At which layer does the IPSec protocol operate to encrypt and protect communications between two parties?
IPSecNetwork LayerOSI ModelNetwork Security
Question #37Cloud Data Security
Which of the following data sanitation methods would be the MOST effective if you needed to securely remove data as quickly as possible in a cloud environment?
Data SanitationCryptographic ErasureCloud Data DisposalSecure Deletion
Question #38Cloud Data Security
Egress monitoring solutions usually include a function that ____________.
Egress MonitoringData Loss Prevention (DLP)Endpoint Security
Question #39Cloud Concepts, Architecture and Design
Which of the following is a method for apportioning resources that involves setting guaranteed minimums for all tenants/customers within the environment?
Resource AllocationCloud Resource ManagementReservationsVirtualization
Question #40Legal, Risk and Compliance
What can tokenization be used for?
TokenizationPCI DSSData ComplianceData Protection
Question #41Cloud Data Security
Which phase of the cloud data lifecycle involves processing by a user or application?
Cloud Data LifecycleData Lifecycle PhasesData Use PhaseCloud Data Management
Question #42Legal, Risk and Compliance
_________ is the legal concept whereby a cloud customer is held to a reasonable expectation for providing security of its users' and clients' privacy data.
Due careLegal conceptsCloud security responsibilityPrivacy data
Question #43Cloud Platform & Infrastructure Security
Which of the following is essential for getting full security value from your system baseline?
System BaselinesConfiguration ManagementCloud Platform SecuritySystem Hardening
Question #44Cloud Data Security
Log data should be protected ____________.
Log data protectionData sensitivityData classification
Question #45Cloud Platform & Infrastructure Security
What is used with a single sign-on system for authentication after the identity provider has successfully authenticated a user?
Single Sign-On (SSO)Identity Provider (IdP)AuthenticationSecurity Tokens
Question #46Cloud Concepts, Architecture and Design
In the cloud motif, the data processor is usually:
Cloud RolesData ProcessorCloud ProviderCloud Concepts
Question #47Cloud Application Security
The Open Web Application Security Project (OWASP) Top Ten is a list of web application security threats that is composed by a member-driven OWASP committee of application developme...
OWASP Top TenApplication SecurityUnvalidated RedirectsWeb Application Security
Question #48Cloud Data Security
You are in charge of creating the BCDR plan and procedures for your organization. Your organization has its production environment hosted by a cloud provider, and you have appropri...
BCDRCloud BackupKey ManagementData Security
Question #49Cloud Concepts, Architecture and Design
The cloud deployment model that features organizational ownership of the hardware and infrastructure, and usage only by members of that organization, is known as:
Cloud deployment modelsPrivate cloudCloud conceptsCloud architecture
Question #50Cloud Data Security
When considering the option to migrate from an on-premises environment to a hosted cloud service, an organization should weigh the risks of allowing external entities to access the...
Cloud Migration RisksData CollaborationRisk AssessmentData Sharing Security

Page 1 of 18Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.