[Q431-Q449] 2024 Updated CCSP PDF for the CCSP Tests Free Updated Today!

NEW QUESTION 431
What are the two protocols that TLS uses?

Handshake and record

Transport and initiate

Handshake and transport

Record and transmit

NEW QUESTION 432
Different certifications and standards take different approaches to data center design and operations. Although many traditional approaches use a tiered methodology, which of the following utilizes a macro- level approach to data center design?

IDCA

BICSI

Uptime Institute

NFPA

NEW QUESTION 433
With the rapid emergence of cloud computing, very few regulations were in place that pertained to it specifically, and organizations often had to resort to using a collection of regulations that were not specific to cloud in order to drive audits and policies.
Which standard from the ISO/IEC was designed specifically for cloud computing?

ISO/IEC 27001

ISO/IEC 19889

ISO/IEC 27001:2015

ISO/IEC 27018

NEW QUESTION 434
SOC 2 reports were intended to be ____________.

Released to the public

Only technical assessments

Retained for internal use

Nonbinding

NEW QUESTION 435
The Cloud Security Alliance (CSA) publishes the Notorious Nine, a list of common threats to organizations participating in cloud computing. A cloud customer that does not perform sufficient due diligence can suffer harm if the cloud provider they’ve selected goes out of business.
What do we call this problem?
Response:

Vendor lock-in

Vendor lock-out

Vendor incapacity

Unscaled

NEW QUESTION 436
Which of the following is a commonly used tool for maintaining system configurations?

Maestro

Orchestrator

Puppet

Conductor

NEW QUESTION 437
What does dynamic application security testing (DAST) NOT entail?

Scanning

Probing

Discovery

Knowledge of the system

NEW QUESTION 438
Which of the following service capabilities gives the cloud customer the most control over resources and configurations?

Desktop

Platform

Infrastructure

Software

NEW QUESTION 439
You need to gain approval to begin moving your company’s data and systems into a cloud environment.
However, your CEO has mandated the ability to easily remove your IT assets from the cloud provider as a precondition.
Which of the following cloud concepts would this pertain to?

Removability

Extraction

Portability

Reversibility

NEW QUESTION 440
Data centers have enormous power resources that are distributed and consumed throughout the entire facility.
Which of the following standards pertains to the proper fire safety standards within that scope?

IDCA

BICSI

NFPA

Uptime Institute

NEW QUESTION 441
All of the following are techniques to enhance the portability of cloud data, in order to minimize the potential of vendor lock-in except:

Ensure there are no physical limitations to moving

Use DRM and DLP solutions widely throughout the cloud operation

Ensure favorable contract terms to support portability

Avoid proprietary data formats

NEW QUESTION 442
ISO/IEC has established international standards for many aspects of computing and any processes or procedures related to information technology.
Which ISO/IEC standard has been established to provide a framework for handling eDiscovery processes?

ISO/IEC 27001

ISO/IEC 27002

ISO/IEC 27040

ISO/IEC 27050

NEW QUESTION 443
SOX was enacted because of which of the following?

Poor BOD oversight

Lack of independent audits

Poor financial controls

All of the above

NEW QUESTION 444
Which of the following best describes the Organizational Normative Framework (ONF)?

A set of application security, and best practices, catalogued and leveraged by the organization

A container for components of an application’s security, best practices catalogued and leveraged by the organization

A framework of containers for some of the components of application security, best practices, catalogued and leveraged by the organization

A framework of containers for all components of application security, best practices, catalogued and leveraged by the organization.

NEW QUESTION 445
A user signs on to a cloud-based social media platform. In another browser tab, the user finds an article worth posting to the social media platform. The user clicks on the platform’s icon listed on the article’s website, and the article is automatically posted to the user’s account on the social media platform.
This is an example of what?
Response:

Single sign-on

Insecure direct identifiers

Identity federation

Cross-site scripting

NEW QUESTION 446
When an organization is considering the use of cloud services for BCDR planning and solutions, which of the following cloud concepts would be the most important?

Reversibility

Elasticity

Interoperability

Portability

NEW QUESTION 447
Which of the following threat types can occur when baselines are not appropriately applied or unauthorized changes are made?

Insecure direct object references

Unvalidated redirects and forwards

Security misconfiguration

Sensitive data exposure

NEW QUESTION 448
Why does a Type 1 hypervisor typically offer tighter security controls than a Type 2 hypervisor?

A Type 1 hypervisor also controls patching of its hosted virtual machines ensure they are always secure.

A Type 1 hypervisor is tied directly to the bare metal and only runs with code necessary to perform its specific mission.

A Type 1 hypervisor performs hardware-level encryption for tighter security and efficiency.

A Type 1 hypervisor only hosts virtual machines with the same operating systems as the hypervisor.

NEW QUESTION 449
Which of the following components are part of what a CCSP should review when looking at contracting with a cloud service provider?

Redundant uplink grafts

Background checks for the provider’s personnel

The physical layout of the datacenter

Use of subcontractors