Browse Exams Pricing

ExamsCCSPQuestions

CCSP Exam Questions

876 real CCSP exam questions with expert-verified answers and explanations. Page 9 of 18.

Question #410Cloud Application Security
Which of the following threat types involves the sending of untrusted data to a user's browser to be executed with their own credentials and access?
Cross-site scripting (XSS)Web application vulnerabilitiesClient-side attacksApplication security
Question #411Cloud Concepts, Architecture and Design
How is an object stored within an object storage system?
Object StorageKey-Value StoreCloud StorageCloud Concepts
Question #412Legal, Risk and Compliance
Which of the following is NOT a regulatory system from the United States federal government?
Regulatory complianceU.S. federal regulationsIndustry standardsPCI DSS
Question #413Legal, Risk and Compliance
Which jurisdiction lacks specific and comprehensive privacy laws at a national or top level of legal authority?
Privacy lawsJurisdictionsData protectionLegal frameworks
Question #414Legal, Risk and Compliance
Which United States law is focused on PII as it relates to the financial industry?
US LawsPIIFinancial RegulationsGLBA
Question #415Cloud Data Security
Which of the following threat types can occur when encryption is not properly applied or insecure transport mechanisms are used?
Sensitive data exposureEncryptionTransport securityVulnerabilities
Question #416Cloud Platform & Infrastructure Security
What is the best approach for dealing with services or utilities that are installed on a system but not needed to perform their desired function?
Least functionalityAttack surface reductionSystem hardeningSecurity best practices
Question #417Cloud Data Security
Which of the following actions will NOT make data part of the "create" phase of the cloud data lifecycle?
Cloud Data LifecycleData Creation PhaseMetadata Management
Question #418Cloud Platform & Infrastructure Security
What are the two protocols that TLS uses?
TLSNetwork Security ProtocolsCryptography BasicsSecure Communication
Question #419Cloud Data Security
Which type of cloud model typically presents the most challenges to a cloud customer during the "destroy" phase of the cloud data lifecycle?
Cloud Service ModelsShared ResponsibilityData DestructionData Lifecycle
Question #420Legal, Risk and Compliance
Which of the following may unilaterally deem a cloud hosting model inappropriate for a system or application?
Regulatory complianceCloud governanceLegal requirementsCloud adoption
Question #421Cloud Platform & Infrastructure Security
Which of the following is considered an internal redundancy for a data center?
Data Center RedundancyPower DistributionInfrastructure Security
Question #422Cloud Concepts, Architecture and Design
Which of the following represents a control on the maximum amount of resources that a single customer, virtual machine, or application can consume within a cloud environment?
Cloud Resource ManagementResource LimitsResource ControlCloud Infrastructure
Question #423Cloud Concepts, Architecture and Design
Which of the following roles is responsible for peering with other cloud services and providers?
Cloud rolesInter-cloud connectivityCloud peeringCloud architecture
Question #424Cloud Data Security
Which of the following does NOT relate to the hiding of sensitive data from data sets?
Data maskingData anonymizationData obfuscationData protection techniques
Question #425Cloud Concepts, Architecture and Design
Which of the following are the storage types associated with IaaS?
IaaSCloud StorageBlock StorageObject Storage
Question #426Cloud Data Security
Which technology can be useful during the "share" phase of the cloud data lifecycle to continue to protect data as it leaves the original system and security controls?
Cloud Data LifecycleData Loss Prevention (DLP)Data ProtectionData Sharing Security
Question #427Cloud Concepts, Architecture and Design
Which of the following storage types is most closely associated with a traditional file system and tree structure?
Storage typesFile systemsBlock storageCloud storage concepts
Question #428Cloud Concepts, Architecture and Design
Which of the following represents a prioritization of applications or cloud customers for the allocation of additional requested resources when there is a limitation on available r...
Cloud Resource AllocationResource PrioritizationResource SharingCloud Resource Management
Question #429Legal, Risk and Compliance
Which type of audit report does many cloud providers use to instill confidence in their policies, practices, and procedures to current and potential customers?
SOC 2Cloud complianceAudit reportsAssurance
Question #430Cloud Platform & Infrastructure Security
Which of the following statements accurately describes VLANs?
VLANsNetwork SegmentationCloud Networking
Question #431Cloud Platform & Infrastructure Security
What must be secured on physical hardware to prevent unauthorized access to systems?
Hardware SecurityPhysical Security ControlsBoot SecurityBIOS Security
Question #432Legal, Risk and Compliance
What type of PII is regulated based on the type of application or per the conditions of the specific hosting agreement?
PIIData RegulationCloud ContractsCompliance
Question #433Cloud Platform & Infrastructure Security
Which of the following security technologies is commonly used to give administrators access into trust zones within an environment?
VPNRemote AccessNetwork SecurityAccess Control
Question #434Cloud Concepts, Architecture and Design
Which concept BEST describes the capability for a cloud environment to automatically scale a system or application, based on its current resource demands?
Cloud characteristicsRapid elasticityNIST cloud definitionAuto-scaling
Question #435Cloud Data Security
If you're using iSCSI in a cloud environment, what must come from an external protocol or application?
iSCSIEncryptionCloud StorageData in Transit Security
Question #436Cloud Concepts, Architecture and Design
Which of the following pertains to a macro level approach to data center design rather than the traditional tiered approach to data centers?
Data Center DesignData Center StandardsIDCAUptime Institute
Question #437Legal, Risk and Compliance
Which of the following is not a way to manage risk?
Risk ManagementRisk Response StrategiesRisk Treatment
Question #438Cloud Platform & Infrastructure Security
Why does a Type 1 hypervisor typically offer tighter security controls than a Type 2 hypervisor?
Hypervisor securityVirtualizationCloud infrastructureAttack surface
Question #439Cloud Concepts, Architecture and Design
Which of the following are the storage types associated with PaaS?
PaaS StorageData ClassificationStructured DataUnstructured Data
Question #440Legal, Risk and Compliance
Which of the following components are part of what a CCSP should review when looking at contracting with a cloud service provider?
Cloud contractingVendor managementThird-party riskDue diligence
Question #441Cloud Application Security
What is the data encapsulation used with the SOAP protocol referred to?
SOAP ProtocolData EncapsulationWeb ServicesXML
Question #442Cloud Application Security
Which of the following threat types can occur when an application does not properly validate input and can be leveraged to send users to malicious sites that appear to be legitimat...
Unvalidated redirectsInput validationApplication securityWeb application vulnerabilities
Question #443Cloud Concepts, Architecture and Design
Which publication from the United States National Institute of Standards and Technology pertains to defining cloud concepts and definitions for the various core components of cloud...
NIST SP 800-145Cloud ConceptsCloud DefinitionsNIST Standards
Question #444Cloud Platform & Infrastructure Security
What is the biggest negative to leasing space in a data center versus building or maintain your own?
Data Center ModelsColocationInfrastructure ControlCloud Infrastructure Deployment
Question #445Cloud Data Security
Which aspect of archiving must be tested regularly for the duration of retention requirements?
Data ArchivingData RecoveryRetention RequirementsCloud Storage
Question #446Cloud Concepts, Architecture and Design
Which of the following represents a minimum guaranteed resource within a cloud environment for the cloud customer?
Cloud Resource ManagementResource AllocationCloud ReservationsGuaranteed Resources
Question #447Cloud Platform & Infrastructure Security
When is a virtual machine susceptible to attacks while a physical server in the same state would not be?
Virtual Machine SecurityOffline AttacksHypervisor SecurityStorage Security
Question #448Cloud Application Security
Which of the following threat types involves an application developer leaving references to internal information and configurations in code that is exposed to the client?
Application SecurityInsecure Direct Object ReferencesVulnerabilityDeveloper Practices
Question #449Cloud Data Security
Which of the following is the biggest concern or challenge with using encryption?
EncryptionKey ManagementCryptographic ChallengesData Protection
Question #450Cloud Concepts, Architecture and Design
Which of the following would NOT be considered part of resource pooling with an Infrastructure as a Service implementation?
IaaSResource PoolingCloud CharacteristicsCloud Service Models
Question #451Cloud Data Security
Which technology is NOT commonly used for security with data in transit?
Data in Transit SecurityNetwork Security ProtocolsDNSSECEncryption Technologies
Question #452Cloud Security Operations
Which of the following roles is responsible for gathering metrics on cloud services and managing cloud deployments and the deployment processes?
Cloud rolesCloud deploymentService managementOperational responsibilities
Question #453Cloud Platform & Infrastructure Security
Which of the following is considered an external redundancy for a data center?
Data Center RedundancyPower RedundancyHigh AvailabilityPhysical Infrastructure
Question #454Cloud Platform & Infrastructure Security
Which of the following is the optimal humidity level for a data center, per the guidelines established by the America Society of Heating, Refrigeration, and Air Conditioning Engine...
Data Center Environmental ControlsHumidity ControlASHRAE StandardsPhysical Security
Question #455Cloud Data Security
What is the first stage of the cloud data lifecycle where security controls can be implemented?
Cloud Data LifecycleData Security ControlsStorage Security
Question #456Cloud Data Security
What controls the formatting and security settings of a volume storage system within a cloud environment?
Cloud Storage ManagementVolume SecurityHost Operating SystemData Formatting
Question #457Cloud Concepts, Architecture and Design
What does SDN stand for within a cloud environment?
SDNCloud NetworkingNetworking Concepts
Question #458Legal, Risk and Compliance
From a legal perspective, what is the most important first step after an eDiscovery order has been received by the cloud provider?
eDiscoveryLegal ComplianceCloud Provider ResponsibilitiesLegal Hold
Question #459Legal, Risk and Compliance
Which of the following is the best example of a key component of regulated PII?
Regulated PIIBreach ReportingComplianceData Protection Laws

PreviousPage 9 of 18Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.