CSA-CCSK

Installing security software designed for physical servers onto a virtualized server can result in severe degradation in performance.

CCM: A hypothetical company called "lnfrastructure4Sure" provides Infrastructure as a Service (IaaS) to its clients. A customer wants to review Infrastructure4Sure's hypervisor security implementation measures. Which of the following measures should Infrastructure4Sure implement?

Which governance domain deals with evaluating how cloud computing affects compliance with internal security policies and various legal requirements, such as regulatory and legislative?

Which of the following cloud deployment models represents a composition of two or more clouds that remain unique identities but are bound together by standardized or proprietary technology that enables data and application portability?

What are six phases of the Data Security Lifecycle?

Prominent recommended standards to enable federation of identity in cloud environments include:

How can you reduce the blast radius if an attacker compromises one system?

What are the three valid options for protecting data as it moves to and within the cloud?

To what extent does the CSA Guidance document suffice for legal advice in setting up relationships with cloud service providers?

ENISA: A key area of controls for cloud provider network architecture is

Which meta-phase does the Cloud Security Alliance use to focus on the security and testing activities when moving code from an isolated development environment to production?

Even with immutable infrastructures, the production environment, should be actively monitored for changes and deviations from approved baselines.

ENISA: Licensing Risks refer to:

Which architecture for hybrid cloud connectivity allows you to connect multiple, different cloud networks to a data center using a single hybrid connection?

CCM: Which of the following statement about CSA's CCM and Security Guidance is False?

A cloud deployment of two or more unique clouds is known as:

ENISA: Which is not one of the five key legal issues common across all scenarios:

ENISA: An example high risk role for malicious insiders within a Cloud Provider includes

What are the primary security responsibilities of the cloud provider in the management infrastructure?

What is true of a workload?

Which type of application security testing should incorporate checks on API calls to the cloud service?

Which facet is focused on protecting the management plane components, such as web and API servers, from attacks?

What is it called when a customer's information and/or processes are compromised by the actions of another customer in a multi-tenancy environment?

What are the three main aspects for data security controls?

Which SDP component is used for authentication and authorization?

In which deployment model should the governance strategy consider the minimum common set of controls comprised of the Cloud Service Provider contract and the organization's internal governance agreements?

What is known as the interface used to connect with the metastructure and configure the cloud environment?

Big data includes high volume, high variety, and high velocity.

What does it mean if the system or environment is built automatically from a template?

Which type of application security testing involves manual activity that is not necessarily integrated into automated testing?