Browse Exams Pricing

ExamsCCSPQuestions

CCSP Exam Questions

876 real CCSP exam questions with expert-verified answers and explanations. Page 4 of 18.

Question #156Cloud Platform & Infrastructure Security
What aspect of data center planning occurs first?
Data Center PlanningPhysical DesignCloud InfrastructureDesign Principles
Question #157Cloud Concepts, Architecture and Design
Which of the following is NOT one of the cloud computing activities, as outlined in ISO/IEC 17789?
ISO/IEC 17789Cloud Computing RolesCloud Actors
Question #158Cloud Platform & Infrastructure Security
All of the following are activities that should be performed when capturing and maintaining an accurate, secure system baseline except ____________.
System BaselineSecurity HardeningConfiguration ManagementPatch Management
Question #159Cloud Security Operations
Penetration testing is a(n) __________ form of security assessment.
Penetration TestingSecurity AssessmentActive Security
Question #160Cloud Application Security
You have been tasked by management to offload processing and validation of incoming encoded data from your application servers and their associated APIs. Which of the following wou...
XML acceleratorAPI processingApplication optimizationEncoded data validation
Question #161Legal, Risk and Compliance
Which of the following is not a way to manage risk?
Risk ManagementRisk Response StrategiesRisk Treatment
Question #162Legal, Risk and Compliance
All of the following entitles are required to use FedRAMP-accredited Cloud Service Providers except ___________.
FedRAMPComplianceRegulatory frameworksGovernment cloud
Question #163Cloud Data Security
You are the security manager of a small firm that has just purchased a DLP solution to implement in your cloud-based production environment. Which of these activities should you pe...
DLP (Data Loss Prevention)Data ClassificationData DiscoveryCloud Data Security Controls
Question #164Legal, Risk and Compliance
An audit against the ________ will demonstrate that an organization has 琣dequate security controls to meet its ISO 27001 requirements.
ISO 27001ISO 27002ComplianceAudit
Question #165Cloud Application Security
What is the most secure form of code testing and review?
Secure software developmentCode reviewSecurity testingOpen source security
Question #166Cloud Data Security
What is a data custodian responsible for?
Data CustodianData RolesData SecurityData Handling
Question #168Cloud Security Operations
Which of the following would probably best aid an organization in deciding whether to migrate from a legacy environment to a particular cloud provider?
Cloud Provider SelectionVendor AssessmentSLA ManagementCloud Migration Strategy
Question #170Legal, Risk and Compliance
Which of the following is not one of the types of controls?
Security ControlsTypes of ControlsAdministrative ControlsTechnical Controls
Question #171Cloud Concepts, Architecture and Design
A cloud data encryption situation where the cloud customer retains control of the encryption keys and the cloud provider only processes and stores the data could be considered a __...
Cloud Key ManagementData EncryptionHybrid CloudDeployment Models
Question #172Cloud Data Security
Data transformation in a cloud environment should be of great concern to organizations considering cloud migration because __________ could affect data classification processes/imp...
Data ClassificationVirtualization SecurityCloud Data SecurityData Transformation
Question #173Cloud Security Operations
Which of the following BCDR testing methodologies is least intrusive?
BCDR testingDisaster RecoveryBusiness ContinuityTesting methodologies
Question #174Legal, Risk and Compliance
The Restatement (Second) Conflict of Law refers to which of the following?
Conflict of LawsJurisdictionLegal frameworksCross-border legal issues
Question #175Cloud Security Operations
Although performing BCDR tests at regular intervals is a best practice to ensure processes and documentation are still relevant and efficient, which of the following represents a r...
BCDRDisaster Recovery PlanningBusiness ContinuityChange Management
Question #176Cloud Platform & Infrastructure Security
What type of software is often considered secured and validated via community knowledge?
Open source softwareSoftware security modelsCommunity validationTransparency in security
Question #177Cloud Concepts, Architecture and Design
What are the four cloud deployment models?
Cloud Deployment ModelsNIST Cloud DefinitionCloud Fundamentals
Question #178Legal, Risk and Compliance
Halon is now illegal to use for data center fire suppression. What is the reason it was outlawed?
HalonFire suppression systemsEnvironmental regulationsPhysical security
Question #179Legal, Risk and Compliance
You are a consultant performing an external security review on a large manufacturing firm. You determine that its newest assembly plant, which cost $24 million, could be completely...
Risk ManagementAnnualized Loss Expectancy (ALE)Single Loss Expectancy (SLE)Business Impact Analysis (BIA)
Question #180Cloud Data Security
Which of the following is NOT a common component of a DLP implementation process?
DLPData Loss PreventionSecurity ControlsImplementation Process
Question #181Legal, Risk and Compliance
Which SSAE 16 audit report is simply an attestation of audit results?
SOC ReportsSSAE 16AuditingCompliance
Question #182Legal, Risk and Compliance
SOC 2 reports were intended to be ____________.
SOC 2Compliance ReportsAuditingReport Distribution
Question #183Cloud Platform & Infrastructure Security
From a security perspective, automation of configuration aids in ____________.
AutomationConfiguration SecurityAttack Surface Reduction
Question #184Cloud Platform & Infrastructure Security
What is the term that describes the situation when a malicious user/attacker can exit the restrictions of a single host and access other nodes on the network?
Host escapeLateral movementAttack vectorsCloud security threats
Question #185Cloud Platform & Infrastructure Security
The physical layout of a cloud data center campus should include redundancies of all the following except ____________.
Data Center InfrastructureRedundancyPhysical SecurityHigh Availability
Question #186Cloud Concepts, Architecture and Design
User access to the cloud environment can be administered in all of the following ways except:
Cloud Access AdministrationIdentity and Access Management (IAM)Cloud RolesShared Responsibility Model
Question #187Legal, Risk and Compliance
Which of the following is not a risk management framework?
Risk Management FrameworksCOBITISO 31000NIST RMF
Question #188Legal, Risk and Compliance
All policies within the organization should include a section that includes all of the following, except:
Policy ManagementGovernanceCompliancePolicy Structure
Question #190Cloud Data Security
What is the experimental technology that might lead to the possibility of processing encrypted data without having to decrypt it first?
Homomorphic EncryptionCloud Data SecurityCryptographyAdvanced Encryption
Question #191Cloud Concepts, Architecture and Design
Which of the following best describes a cloud carrier?
Cloud CarrierCloud RolesNIST Cloud ModelCloud Definitions
Question #192Cloud Concepts, Architecture and Design
When using a SaaS solution, what is the capability provided to the customer?
SaaSCloud Service ModelsCloud Concepts
Question #193Legal, Risk and Compliance
Which of the following is the dominant driver behind the regulations to which a system or application must adhere?
Regulatory complianceJurisdictionData residencyLegal frameworks
Question #194Cloud Concepts, Architecture and Design
When using an Infrastructure as a Service solution, what is a key benefit provided to the customer?
IaaSCloud BenefitsPay-as-you-goCloud Economic Model
Question #195Cloud Concepts, Architecture and Design
Identity and access management (IAM) is a security discipline that ensures which of the following?
Identity and Access ManagementIAMAuthenticationAuthorization
Question #196Cloud Concepts, Architecture and Design
What are third-party providers of IAM functions for the cloud environment?
CASBCloud IAMCloud Security ServicesIdentity and Access Management
Question #197Cloud Application Security
Which of the following best describes SAML?
SAMLFederated IdentitySSOAuthentication
Question #198Legal, Risk and Compliance
A poorly negotiated cloud service contract could result in all the following detrimental effects except:
Cloud contractsContract negotiationCloud risksVendor lock-in
Question #199Cloud Application Security
Why are PaaS environments at a higher likelihood of suffering backdoor vulnerabilities?
PaaS SecurityApplication Development SecurityBackdoor VulnerabilitiesCloud Service Models
Question #200Legal, Risk and Compliance
Impact resulting from risk being realized is often measured in terms of ____________.
Risk ManagementImpact AssessmentFinancial Impact
Question #201Cloud Data Security
Which of the following is a possible negative aspect of bit-splitting?
Data dispersionBit-splittingData availabilityDistributed data storage
Question #202Cloud Platform & Infrastructure Security
What is the amount of fuel that should be on hand to power generators for backup datacenter power, in all tiers, according to the Uptime Institute?
Datacenter InfrastructureBackup PowerUptime Institute StandardsBusiness Continuity
Question #203Cloud Data Security
DRM solutions should generally include all the following functions, except:
DRMDigital Rights ManagementData SecurityContent Protection
Question #204Legal, Risk and Compliance
Which of the following is considered an administrative control?
Security ControlsAdministrative ControlsAccess Control
Question #205Cloud Data Security
The Cloud Security Alliance (CSA) publishes, the Notorious Nine, a list of common threats to organizations participating in cloud computing. According to the CSA, all of the follow...
CSA Notorious NineData LossCloud Security ThreatsSecurity Policy
Question #206Cloud Application Security
You are the security manager for a software development firm. Your company is interested in using a managed cloud service provider for hosting its testing environment. Previous rel...
Application security testingSoftware Composition Analysis (SCA)Open source securitySecure SDLC
Question #207Cloud Concepts, Architecture and Design
_______ is the most prevalent protocol used in identity federation.
Identity FederationSAMLCloud Identity ManagementAuthentication Protocols
Question #208Legal, Risk and Compliance
Which Common Criteria Evaluation Assurance Level (EAL) is granted to those products that are formally verified in terms of design and tested by an independent third party?
Common CriteriaEvaluation Assurance Level (EAL)Formal VerificationProduct Certification

PreviousPage 4 of 18Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.