Browse Exams Pricing

ExamsCCSPQuestions

CCSP Exam Questions

876 real CCSP exam questions with expert-verified answers and explanations. Page 11 of 18.

Question #510Legal, Risk and Compliance
What concept does the "R" represent with the DREAD model?
DREAD modelThreat ModelingRisk AssessmentReproducibility
Question #511Legal, Risk and Compliance
The SOC Type 2 reports are divided into five principles. Which of the five principles must also be included when auditing any of the other four principles?
SOC 2Trust Services CriteriaComplianceSecurity Auditing
Question #512Cloud Platform & Infrastructure Security
How many additional DNS queries are needed when DNSSEC integrity checks are added?
DNSSECDNS SecurityNetwork SecurityInfrastructure Security
Question #513Legal, Risk and Compliance
Which of the following is the sole responsibility of the cloud customer, regardless of which cloud model is used?
Shared Responsibility ModelCloud GovernanceCustomer ResponsibilitiesCloud Models
Question #514Cloud Concepts, Architecture and Design
Which of the following service categories entails the least amount of support needed on the part of the cloud customer?
Cloud Service ModelsShared Responsibility ModelSaaSCustomer Responsibility
Question #515Legal, Risk and Compliance
Which of the following would NOT be a reason to activate a BCDR strategy?
Business ContinuityDisaster RecoveryBCDR TriggersRisk Management
Question #516Legal, Risk and Compliance
Which of the cloud cross-cutting aspects relates to the oversight of processes and systems, as well as to ensuring their compliance with specific policies and regulations?
AuditabilityCloud GovernanceComplianceOversight
Question #517Cloud Concepts, Architecture and Design
Which of the cloud cross-cutting aspects relates to the ability to reuse or move components of an application or service?
Cloud ConceptsCross-cutting AspectsInteroperabilityApplication Reuse
Question #518Cloud Data Security
Which of the following is a restriction that can be enforced by information rights management (IRM) that is not possible for traditional file system controls?
Information Rights Management (IRM)Digital Rights Management (DRM)File System ControlsData Protection
Question #519Cloud Data Security
What strategy involves hiding data in a data set to prevent someone from identifying specific individuals based on other data fields present?
Data PrivacyAnonymizationData Protection
Question #520Cloud Platform & Infrastructure Security
What type of security threat is DNSSEC designed to prevent?
DNSSECDNS SecuritySpoofing PreventionNetwork Security
Question #521Legal, Risk and Compliance
Which European Union directive pertains to personal data privacy and an individual's control over their personal data?
EU Data Protection DirectivePersonal Data PrivacyComplianceRegulatory Frameworks
Question #522Legal, Risk and Compliance
Which of the cloud cross-cutting aspects relates to the requirements placed on a system or application by law, policy, or requirements from standards?
Regulatory ComplianceLegal RequirementsCompliance StandardsCloud Governance
Question #523Legal, Risk and Compliance
Which data point that auditors always desire is very difficult to provide within a cloud environment?
Cloud AuditingShared Responsibility ModelCloud VisibilityCompliance Challenges
Question #524Cloud Platform & Infrastructure Security
What type of host is exposed to the public Internet for a specific reason and hardened to perform only that function for authorized users?
Bastion hostNetwork securitySystem hardeningInternet-facing systems
Question #525Cloud Data Security
Which security concept is focused on the trustworthiness of data?
IntegrityCIA TriadData TrustworthinessSecurity Concepts
Question #526Cloud Platform & Infrastructure Security
Which OSI layer does IPsec operate at?
IPsecOSI ModelNetwork SecurityNetworking Fundamentals
Question #527Legal, Risk and Compliance
Which of the cloud cross-cutting aspects relates to the requirements placed on the cloud provider by the cloud customer for minimum performance standards and requirements that must...
SLAService Level AgreementsCloud ContractsPerformance Standards
Question #528Cloud Concepts, Architecture and Design
Which of the following service capabilities gives the cloud customer the most control over resources and configurations?
Cloud Service ModelsIaaSCustomer ControlShared Responsibility Model
Question #529Cloud Concepts, Architecture and Design
What concept does the "I" represent with the STRIDE threat model?
STRIDE threat modelThreat modelingInformation disclosureSecurity models
Question #530Legal, Risk and Compliance
At which stage of the BCDR plan creation phase should security be included in discussions?
BCDR PlanningSecurity IntegrationScope DefinitionRisk Management
Question #531Cloud Data Security
Which approach is typically the most efficient method to use for data discovery?
Data DiscoveryMetadata ManagementData GovernanceEfficiency
Question #532Cloud Concepts, Architecture and Design
Which of the following features is a main benefit of PaaS over IaaS?
PaaSIaaSCloud Service ModelsAuto-scaling
Question #533Legal, Risk and Compliance
Which audit type has been largely replaced by newer approaches since 2011?
Audit StandardsSAS 70SOC ReportsCompliance
Question #534Cloud Platform & Infrastructure Security
Which of the following can be useful for protecting cloud customers from a denial-of-service (DoS) attack against another customer hosted in the same cloud?
Resource IsolationMulti-tenant ProtectionDoS MitigationCloud Resource Reservations
Question #535Cloud Concepts, Architecture and Design
Which of the following service capabilities gives the cloud customer the least amount of control over configurations and deployments?
Cloud Service ModelsSaaSCustomer Control
Question #536Legal, Risk and Compliance
What does the "SOC" acronym refer to with audit reports?
SOC reportsAuditingComplianceThird-party risk
Question #537Cloud Application Security
What does the REST API use to protect data transmissions?
REST API securityTLSData in transit encryptionApplication security
Question #538Cloud Data Security
What strategy involves replacing sensitive data with opaque values, usually with a means of mapping it back to the original value?
TokenizationData protectionData securitySensitive data
Question #539Cloud Platform & Infrastructure Security
With software-defined networking, what aspect of networking is abstracted from the forwarding of traffic?
SDNNetwork AbstractionControl PlaneData Plane
Question #540Cloud Platform & Infrastructure Security
Which of the following does NOT fall under the "IT" aspect of quality of service (QoS)?
Quality of Service (QoS)IT OperationsPerformance ManagementKey Performance Indicators (KPIs)
Question #541Cloud Application Security
What does dynamic application security testing (DAST) NOT entail?
DASTApplication security testingBlack-box testingVulnerability scanning
Question #542Cloud Application Security
Where is an XML firewall most commonly deployed in the environment?
XML firewallWeb Application Firewall (WAF)Application securitySecurity architecture
Question #543Cloud Data Security
What type of masking strategy involves replacing data on a system while it passes between the data and application layers?
Data MaskingDynamic Data MaskingData Privacy
Question #544Cloud Application Security
Which of the following is a widely used tool for code development, branching, and collaboration?
GitHubVersion ControlCode RepositoriesCollaboration Tools
Question #545Cloud Platform & Infrastructure Security
Which aspect of security is DNSSEC designed to ensure?
DNSSECDNS SecurityIntegrityCryptographic controls
Question #546Cloud Concepts, Architecture and Design
Which process serves to prove the identity and credentials of a user requesting access to an application or data?
AuthenticationIdentity and Access ManagementSecurity FundamentalsAccess Control
Question #547Cloud Platform & Infrastructure Security
Who would be responsible for implementing IPsec to secure communications for an application?
IPsecNetwork SecurityRoles and ResponsibilitiesInfrastructure Security
Question #548Legal, Risk and Compliance
What is the minimum regularity for testing a BCDR plan to meet best practices?
BCDRDisaster Recovery PlanningBusiness Continuity PlanningTesting and Exercising
Question #549Cloud Concepts, Architecture and Design
Other than cost savings realized due to measured service, what is another facet of cloud computing that will typically save substantial costs in time and money for an organization...
Cloud CharacteristicsDisaster RecoveryBusiness ContinuityCost Savings
Question #550Legal, Risk and Compliance
Which of the following is NOT part of a retention policy?
Data RetentionInformation GovernanceCompliancePolicy Management
Question #551Cloud Concepts, Architecture and Design
Which aspect of cloud computing would make the use of a cloud the most attractive as a BCDR solution?
BCDRCloud CharacteristicsMeasured ServiceCost Efficiency
Question #552Cloud Concepts, Architecture and Design
Which of the cloud deployment models offers the easiest initial setup and access for the cloud customer?
Cloud Deployment ModelsPublic CloudCloud CharacteristicsCloud Access
Question #553Cloud Platform & Infrastructure Security
Which of the following is NOT something that an HIDS will monitor?
HIDSIntrusion DetectionHost SecurityCloud Monitoring
Question #554Cloud Platform & Infrastructure Security
Which of the following technologies is used to monitor network traffic and notify if any potential threats or attacks are noticed?
IDSIntrusion Detection SystemNetwork SecurityThreat Detection
Question #555Legal, Risk and Compliance
What concept does the "A" represent in the DREAD model?
DREAD modelThreat modelingRisk assessmentAffected users
Question #556Cloud Data Security
Which attribute of data poses the biggest challenge for data discovery?
Data DiscoveryData QualityData GovernanceData Attributes
Question #557Cloud Application Security
What does static application security testing (SAST) offer as a tool to the testers?
SASTApplication Security TestingSource Code AnalysisCloud Application Security
Question #558Cloud Concepts, Architecture and Design
Which of the following service capabilities gives the cloud customer an established and maintained framework to deploy code and applications?
Cloud Service ModelsPaaSCloud ConceptsApplication Deployment
Question #559Cloud Concepts, Architecture and Design
What process is used within a cloud environment to maintain resource balancing and ensure that resources are available where and when needed?
Cloud OptimizationResource ManagementResource BalancingDynamic Resource Allocation

PreviousPage 11 of 18Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.