Browse Exams Pricing

ExamsCCSPQuestions

CCSP Exam Questions

876 real CCSP exam questions with expert-verified answers and explanations. Page 8 of 18.

Question #360Legal, Risk and Compliance
The BCDR plan/process should be written and documented in such a way that it can be used by ____________. Response:
BCDR PlanningDocumentationOperational Readiness
Question #361Cloud Data Security
Which of the following would NOT be used to determine the classification of data? Response:
Data ClassificationData Security PrinciplesInformation Governance
Question #362Cloud Platform & Infrastructure Security
Security best practices in a virtualized network environment would include which of the following? Response:
Virtualized NetworkingVirtual Switch SecurityVLAN SegmentationNetwork Segmentation
Question #363Legal, Risk and Compliance
During the assessment phase of a risk evaluation, what are the two types of tests that are performed? Response:
Risk assessmentQualitative analysisQuantitative analysisRisk evaluation
Question #364Cloud Application Security
A user signs on to a cloud-based social media platform. In another browser tab, the user finds an article worth posting to the social media platform. The user clicks on the platfor...
Identity FederationCloud Identity ManagementAuthorizationThird-Party Integration
Question #365Cloud Concepts, Architecture and Design
Which of the following roles is responsible for creating cloud components and the testing and validation of services?
Cloud RolesService DevelopmentComponent CreationService Validation
Question #366Cloud Platform & Infrastructure Security
What is the best source for information about securing a physical asset's BIOS?
BIOS securityHardware securityVendor documentationSecurity information sources
Question #367Legal, Risk and Compliance
Which of the following is not a component of contractual PII?
PII managementData protection agreementsContractual obligationsLegal compliance
Question #368Cloud Concepts, Architecture and Design
Which of the following concepts refers to a cloud customer paying only for the resources and offerings they use within a cloud environment, and only for the duration that they are...
Cloud characteristicsMeasured serviceNIST cloud definitionCloud billing
Question #369Cloud Security Operations
Which of the following roles involves testing, monitoring, and securing cloud services for an organization?
Cloud rolesCloud administrationCloud security operationsCloud service management
Question #370Cloud Application Security
What is the only data format permitted with the SOAP API?
SOAPXMLAPI
Question #371Cloud Application Security
Which data formats are most commonly used with the REST API?
REST APIData FormatsJSONXML
Question #372Cloud Application Security
Which of the following threat types involves an application that does not validate authorization for portions of itself after the initial checks?
Application SecurityAccess ControlAuthorizationWeb Application Vulnerabilities
Question #373Cloud Concepts, Architecture and Design
Which of the following roles involves overseeing billing, purchasing, and requesting audit reports for an organization within a cloud environment?
Cloud roles and responsibilitiesCloud governanceCloud financial managementCloud procurement
Question #374Cloud Concepts, Architecture and Design
What is the biggest concern with hosting a key management system outside of the cloud environment?
Key Management System (KMS)Hybrid CloudAvailabilityArchitectural Risks
Question #375Cloud Data Security
Which of the following approaches would NOT be considered sufficient to meet the requirements of secure data destruction within a cloud environment?
Data Destruction MethodsSecure ErasureData RemanenceCloud Data Security
Question #376Legal, Risk and Compliance
Which of the following cloud aspects complicates eDiscovery?
eDiscoveryMultitenancyCloud characteristicsLegal compliance
Question #377Cloud Platform & Infrastructure Security
What does the management plane typically utilize to perform administrative functions on the hypervisors that it has access to?
Management PlaneHypervisor ManagementAPIsCloud Architecture
Question #378Legal, Risk and Compliance
What is a serious complication an organization faces from the perspective of compliance with international operations?
ComplianceInternational OperationsJurisdictionLegal Risk
Question #379Cloud Platform and Infrastructure Security
Which networking concept in a cloud environment allows for network segregation and isolation of IP spaces?
NetworkingCloud NetworkingVLANNetwork Segregation
Question #380Cloud Platform & Infrastructure Security
Which of the following standards primarily pertains to cabling designs and setups in a data center?
Data Center InfrastructureCabling StandardsPhysical LayerBICSI
Question #381Cloud Concepts, Architecture and Design
Which of the following publishes the most commonly used standard for data center design in regard to tiers and topologies?
data center designUptime Institutedata center tiersinfrastructure standards
Question #382Cloud Concepts, Architecture and Design
What type of segregation and separation of resources is needed within a cloud environment for multitenancy purposes versus a traditional data center model?
MultitenancyResource SegregationCloud ArchitectureLogical Isolation
Question #383Legal, Risk and Compliance
Which United States law is focused on data related to health records and privacy?
US LawHealthcare DataPrivacy RegulationsHIPAA
Question #384Cloud Platform & Infrastructure Security
What is used for local, physical access to hardware within a data center?
Data Center OperationsPhysical AccessServer ManagementKVM
Question #385Cloud Concepts, Architecture and Design
Within an Infrastructure as a Service model, which of the following would NOT be a measured service?
IaaSCloud Service ModelsMeasured ServiceCloud Billing
Question #386Legal, Risk and Compliance
Which of the following is NOT a criterion for data within the scope of eDiscovery?
eDiscoveryLegal HoldData GovernanceCompliance
Question #387Legal, Risk and Compliance
Which United States law is focused on accounting and financial practices of organizations?
US LawComplianceSarbanes-Oxley ActFinancial Regulations
Question #388Cloud Data Security
What type of masking strategy involves making a separate and distinct copy of data with masking in place?
Data MaskingStatic Data MaskingData Security
Question #389Legal, Risk and Compliance
Which of the following is the primary purpose of an SOC 3 report?
SOC reportsAudit reportsThird-party assuranceCompliance
Question #390Cloud Concepts, Architecture and Design
Which of the following roles is responsible for overseeing customer relationships and the processing of financial transactions?
Cloud service rolesCloud business managementCustomer relationshipsFinancial transactions
Question #391Cloud Application Security
Which protocol does the REST API depend on?
REST APIHTTPCloud APIsProtocols
Question #392Legal, Risk and Compliance
Which United States program was designed to enable organizations to bridge the gap between privacy laws and requirements of the United States and the European Union?
Data PrivacyInternational Data TransferSafe HarborCompliance
Question #393Cloud Concepts, Architecture and Design
What is the biggest benefit to leasing space in a data center versus building or maintain your own?
Data Center StrategyCo-locationCloud EconomicsCost Savings
Question #394Cloud Platform & Infrastructure Security
Which of the following security measures done at the network layer in a traditional data center are also applicable to a cloud environment?
Cloud NetworkingNetwork SecurityTrust ZonesNetwork Segmentation
Question #395Cloud Concepts, Architecture and Design
Which aspect of cloud computing will be most negatively impacted by vendor lock-in?
Vendor Lock-inCloud PortabilityCloud ConceptsCloud Architecture
Question #396Cloud Concepts, Architecture and Design
Which of the following APIs are most commonly used within a cloud environment?
Cloud APIsRESTSOAPCloud integration
Question #397Legal, Risk and Compliance
Which of the following attempts to establish an international standard for eDiscovery processes and best practices?
eDiscoveryISO standardsCompliance
Question #398Cloud Concepts, Architecture and Design
Which of the following roles is responsible for obtaining new customers and securing contracts and agreements?
Cloud service brokerCloud rolesCloud ecosystemCustomer acquisition
Question #399Cloud Security Operations
Which term relates to the application of scientific methods and practices to evidence?
ForensicsDigital ForensicsIncident ResponseEvidence Analysis
Question #400Cloud Concepts, Architecture and Design
Which of the following roles involves the provisioning and delivery of cloud services?
Cloud rolesCloud service managementService provisioningService delivery
Question #401Legal, Risk and Compliance
What is the primary reason that makes resolving jurisdictional conflicts complicated?
JurisdictionInternational LawComplianceLegal Challenges
Question #402Legal, Risk and Compliance
GAAPs are created and maintained by which organization?
GAAPAICPAComplianceAccounting Standards
Question #403Cloud Security Operations
Which of the following roles is responsible for preparing systems for the cloud, administering and monitoring services, and managing inventory and assets?
Cloud RolesCloud OperationsService ManagementCloud Administration
Question #404Cloud Platform & Infrastructure Security
Which protocol allows a system to use block-level storage as if it was a SAN, but over TCP network traffic instead?
iSCSIBlock StorageSANNetwork Protocols
Question #405Cloud Concepts, Architecture and Design
Which of the cloud deployment models is used by popular services such as iCloud, Dropbox, and OneDrive?
Cloud Deployment ModelsPublic CloudCloud Computing Concepts
Question #406Cloud Platform & Infrastructure Security
Why does a Type 2 hypervisor typically offer less security control than a Type 1 hypervisor?
Hypervisor typesVirtualization securityCloud infrastructure securityAttack surface
Question #407Cloud Data Security
Which is the appropriate phase of the cloud data lifecycle for determining the data's classification?
Cloud Data LifecycleData ClassificationData GovernanceCloud Security Principles
Question #408Cloud Platform & Infrastructure Security
Which of the following is the optimal temperature for a data center, per the guidelines established by the America Society of Heating, Refrigeration, and Air Conditioning Engineers...
Data Center OperationsASHRAE GuidelinesEnvironmental ControlsPhysical Infrastructure
Question #409Cloud Security Operations
Which of the following terms is not associated with cloud forensics?
Cloud ForensicsDigital ForensicsEvidence HandlingIncident Response

PreviousPage 8 of 18Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.