Browse Exams Pricing

ExamsCCSPQuestions

CCSP Exam Questions

876 real CCSP exam questions with expert-verified answers and explanations. Page 7 of 18.

Question #310Cloud Concepts, Architecture and Design
Your company operates in a highly competitive market, with extremely high-value data assets. Senior management wants to migrate to a cloud environment but is concerned that provide...
Cloud deployment modelsPrivate cloudCloud security architectureData security
Question #311Cloud Security Operations
Patches do all the following except ____________. Response:
PatchesSoftware UpdatesVulnerability ManagementSystem Maintenance
Question #312Cloud Data Security
Which of the following is an example of useful and sufficient data masking of the string "CCSP"? Response:
Data MaskingData ObfuscationData Protection
Question #313Cloud Platform & Infrastructure Security
It is important to include _______ in the design of underfloor plenums if they are also used for wiring. Response:
Plenum wiringFire safetyInfrastructure securityPhysical security
Question #314Cloud Application Security
Dynamic application security testing (DAST) is usually considered a ________ form of testing. Response: White-box
DASTApplication Security TestingBlack-box testing
Question #315Cloud Concepts, Architecture and Design
What aspect of a Type 2 hypervisor involves additional security concerns that are not relevant with a Type 1 hypervisor? Response:
Hypervisor SecurityVirtualizationType 1 HypervisorType 2 Hypervisor
Question #316Cloud Platform & Infrastructure Security
Devices in the cloud datacenter should be secure against attack. All the following are means of hardening devices, except: Response:
Device hardeningSecurity best practicesCloud infrastructure security
Question #317Cloud Application Security
A web application firewall (WAF) can understand and act on ________ traffic. Response:
WAFWeb Application FirewallHTTPApplication Security
Question #318Legal, Risk and Compliance
The nature of cloud computing and how it operates make complying with data discovery and disclosure orders more difficult. Which of the following concepts provides the biggest chal...
Cloud Computing ConceptsLegal ComplianceData DiscoveryMultitenancy
Question #319Cloud Concepts, Architecture and Design
Which of the following types of software is a Type 2 hypervisor dependent on that a Type 1 hypervisor isn't? Response:
Hypervisor typesVirtualizationCloud architectureType 1 hypervisorType 2 hypervisor
Question #320Legal, Risk and Compliance
Which kind of SSAE audit reviews controls dealing with the organization's controls for assuring the confidentiality, integrity, and availability of data? Response:
SOC ReportsSSAEAudit and AssuranceCIA Triad
Question #321Legal, Risk and Compliance
Access should be based on ____________. Response:
Access ControlRisk ManagementBusiness AlignmentSecurity Governance
Question #322Legal, Risk and Compliance
Which of the following methods of addressing risk is most associated with insurance? Response:
Risk ManagementRisk TreatmentRisk TransferenceInsurance
Question #323Cloud Application Security
Bob is staging an attack against Alice's website. He is able to embed a link on her site that will execute malicious code on a visitor's machine, if the visitor clicks on the link....
Cross-site ScriptingWeb Application SecurityInjection Attacks
Question #324Cloud Data Security
Although indirect identifiers cannot alone point to an individual, the more of them known can lead to a specific identity. Which strategy can be used to avoid such a connection bei...
Data AnonymizationPrivacyRe-identificationIndirect Identifiers
Question #325Cloud Data Security
Tokenization requires two distinct ______________. Response:
TokenizationData securityData segregationDatabase architecture
Question #326Cloud Data Security
DLP solutions can aid all of the following security-related efforts except ____________. Response:
DLPData Security ControlsAccess ControlEgress Monitoring
Question #327Legal, Risk and Compliance
With cloud computing crossing many jurisdictional boundaries, it is a virtual certainty that conflicts will arise between differing regulations. What is the major impediment to res...
Jurisdictional conflictsInternational regulationsCloud legal issuesCompliance challenges
Question #328Cloud Concepts, Architecture and Design
What is the major difference between authentication/authorization? Response:
AuthenticationAuthorizationIdentity and Access ManagementSecurity Fundamentals
Question #329Cloud Data Security
Which theoretical technology would allow superposition of physical states to increase both computing capacity and encryption keyspace? Response:
Quantum computingSuperpositionEncryption keyspaceEmerging technologies
Question #330Legal, Risk and Compliance
A cloud provider is looking to provide a higher level of assurance to current and potential cloud customers about the design and effectiveness of their security controls. Which of...
SOC ReportsCloud Security AuditsCompliance AssuranceThird-Party Risk Management
Question #331Cloud Data Security
Anonymization is the process of removing from data sets. Response:
AnonymizationData privacyData protectionIdentifying information
Question #332Legal, Risk and Compliance
________ is perhaps the main external factor driving IAM efforts. Response:
IAMRegulationComplianceExternal factors
Question #333Cloud Security Operations
Which of the following aspects of the BC/DR process poses a risk to the organization? Response:
Business ContinuityDisaster RecoveryBC/DR TestingRisk Management
Question #334Cloud Data Security
What is one of the benefits of implementing an egress monitoring solution? Response:
Egress MonitoringData Security ControlsData Asset InventoryData Loss Prevention (DLP)
Question #335Cloud Data Security
Which of the following is not a security concern related to archiving data for long-term storage? Response:
Data ArchivingLong-term Storage SecurityKey ManagementMedia Security
Question #336Legal, Risk and Compliance
If bit-splitting is used to store data sets across multiple jurisdictions, how may this enhance security? Response:
Data ResidencyJurisdictional ComplianceData FragmentationLegal Seizure
Question #337Cloud Concepts, Architecture and Design
Cloud environments are based entirely on virtual machines and virtual devices, and those images are also in need of storage within the environment. What type of storage is typicall...
Cloud storageObject storageVM imagesCloud architecture
Question #338Cloud Data Security
Alice is the CEO for a software company; she is considering migrating the operation from the current on-premises legacy environment into the cloud. In order to protect her company'...
Intellectual Property ProtectionCloud Data Security ControlsData Loss PreventionEncryption
Question #339Cloud Data Security
The Brewer-Nash security model is also known as which of the following? Response:
Brewer-Nash ModelChinese Wall ModelSecurity ModelsAccess Control
Question #340Cloud Platform & Infrastructure Security
A truly airgapped machine selector will ____________. Response:
Air gapNetwork isolationSecurity controlsData transfer
Question #341Cloud Platform & Infrastructure Security
In addition to BCDR, what other benefit can your data archive/backup provide? Response:
Data backupIdentity managementSystem testingOperational benefits
Question #342Cloud Platform & Infrastructure Security
Setting thermostat controls by measuring the temperature will result in the ________ highest energy costs. Response:
Data Center CoolingEnergy EfficiencyThermostat ControlsInfrastructure Management
Question #343Legal, Risk and Compliance
The ISO/IEC 27001:2013 security standard contains 14 different domains that cover virtually all areas of IT operations and procedures. Which of the following is NOT one of the doma...
ISO 27001Information Security StandardsComplianceRisk Management
Question #344Cloud Data Security
Cryptographic keys for encrypted data stored in the cloud should be ______________. Response:
Key ManagementCloud Data EncryptionSecurity Best PracticesData Security
Question #345Cloud Platform & Infrastructure Security
Which is the most commonly used standard for information exchange within a federated identity system? Response:
Federated IdentitySAMLIdentity ManagementSSO
Question #346Cloud Concepts, Architecture and Design
What type of identity system allows trust and verifications between the authentication systems of multiple organizations? Response:
Federated IdentityIdentity ManagementAuthenticationTrust Frameworks
Question #347Cloud Platform & Infrastructure Security
Software-defined networking (SDN) is intended to separate different network capabilities and allow for the granting of granular configurations, permissions, and features to non-net...
SDNControl PlaneData PlaneNetwork Capabilities
Question #348Cloud Security Operations
It's important to maintain a current asset inventory list, including surveying your environment on a regular basis, in order to ____________. Response:
Asset ManagementVulnerability ManagementSecurity OperationsRisk Management
Question #349Legal, Risk and Compliance
An audit against the __________ will demonstrate that an organization has a holistic, comprehensive security program. Response:
ISO 27001Information Security Management SystemComplianceAudits and Certifications
Question #350Cloud Security Operations
What are the objectives of change management? (Choose all that apply.) Response:
Change ManagementCloud Security OperationsRisk ManagementIT Governance
Question #351Cloud Concepts, Architecture and Design
Your company maintains an on-premises data center for daily production activities but wants to use a cloud service to augment this capability during times of increased demand (clou...
Cloud Deployment ModelsHybrid CloudCloud BurstingCloud Architecture
Question #352Legal, Risk and Compliance
Which of the following threats from the OWASP Top Ten is the most difficult for an organization to protect against? Response:
Insider threatThreat mitigationRisk managementSecurity challenges
Question #353Legal, Risk and Compliance
Which of the following methods of addressing risk is most associated with insurance?
Risk ManagementRisk ResponseRisk TransferenceInsurance
Question #354Legal, Risk and Compliance
Which of the following aids in the ability to demonstrate due diligence efforts? Response:
Due diligenceDocumentationSecurity awareness trainingCompliance
Question #355Cloud Application Security
Your application has been a continued target for SQL injection attempts. Which of the following technologies would be best used to combat the likeliness of a successful SQL injecti...
SQL InjectionWeb Application FirewallApplication SecuritySecurity Controls
Question #356Cloud Platform & Infrastructure Security
Federation allows _________ across organizations. Response:
Identity FederationAccess ManagementCross-organization Trust
Question #357Legal, Risk and Compliance
Which of the following frameworks focuses specifically on design implementation and management?
Risk management frameworksISO standardsGRC
Question #358Legal, Risk and Compliance
Which of the following is not an example of a highly regulated environment?
Regulatory complianceIndustry regulationsRegulated environments
Question #359Cloud Concepts, Architecture and Design
Who operates the management plane? Response:
Cloud architectureManagement planePrivileged usersCloud roles

PreviousPage 7 of 18Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.