CSA-CCSK

Use elastic servers when possible and move workloads to new instances.

To understand their compliance alignments and gaps with a cloud provider, what must cloud customers rely on?

Which of the following is a perceived advantage or disadvantage of managing enterprise risk for cloud deployments?

Which data security control is the LEAST likely to be assigned to an IaaS provider?

How does virtualized storage help avoid data loss if a drive fails?

Which statement best describes the impact of Cloud Computing on business continuity management?

What is known as a code execution environment running within an operating system that shares and uses the resources of the operating system?

Which term is used to describe the use of tools to selectively degrade portions of the cloud to continuously test business continuity?

What is true of companies considering a cloud computing business relationship?

Dynamic Application Security Testing (DAST) might be limited or require pre-testing permission from the provider.

What is a potential concern of using Security-as-a-Service (SecaaS)?

How should an SDLC be modified to address application security in a Cloud Computing environment?

Which governance domain focuses on proper and adequate incident detection, response, notification, and remediation?

Which opportunity helps reduce common application security issues?

What is the most significant security difference between traditional infrastructure and cloud computing?

What makes single cloud assets less resilient compared with a traditional infrastructure?

ENISA: In Infrastructure as a Service (IaaS), who is responsible for guest systems monitoring?

What are the components of an encryption system?

What is the main data source for detection and analysis of an incident?

Which cloud storage technology would include a content delivery network (CON), files stored in SaaS, and caching?

What is a benefit of application security in a cloud environment?

You have a business relationship with a cloud provider for all sales management functionality. Through the APIs and SDKs, you have customized the interface and some functionality, but the back end service is done through the cloud provider. In this relationship, which service is completed by the cloud provider?

Absent other evidence, such as tampering or hacking, documents should not be considered more or less admissible or credible because they were created or stored in the cloud.

What are the encryption options available for SaaS consumers?

When the application components communicate directly with the cloud service, the management plane and metastructure might fall within the application security scope.

How can you monitor and filter data in a virtual network when traffic might not cross the physical network?

Which concept is defined as the unique expression of an entity within a given namespace?

What is a method used to decouple the network control plane from the data plane?

For cloud consumers to be able to properly configure and manage their network security, what must cloud providers do?

What is true of Software Defined Network firewalls?