ISC-CCSP

CCSP Which of the following would NOT be a reason to activate a BCDR strategy?

CCSP Which of the cloud cross-cutting aspects relates to the oversight of processes and systems, as well as to ensuring their compliance with specific policies and regulations?

CCSP Which of the cloud cross-cutting aspects relates to the ability to reuse or move components of an application or service?

CCSP Which of the following is a restriction that can be enforced by information rights management (IRM) that is not possible for traditional file system controls?

CCSP What strategy involves hiding data in a data set to prevent someone from identifying specific individuals based on other data fields present?

CCSP What type of security threat is DNSSEC designed to prevent?

CCSP Which European Union directive pertains to personal data privacy and an individual's control over their personal data?

CCSP Which of the cloud cross-cutting aspects relates to the requirements placed on a system or application by law, policy, or requirements from standards?

CCSP Which data point that auditors always desire is very difficult to provide within a cloud environment?

CCSP What type of host is exposed to the public Internet for a specific reason and hardened to perform only that function for authorized users?

CCSP Which security concept is focused on the trustworthiness of data?

CCSP Which OSI layer does IPsec operate at?

CCSP Which of the cloud cross-cutting aspects relates to the requirements placed on the cloud provider by the cloud customer for minimum performance standards and requirements that must be met?

CCSP Which of the following service capabilities gives the cloud customer the most control over resources and configurations?

CCSP What concept does the "I" represent with the STRIDE threat model?

CCSP At which stage of the BCDR plan creation phase should security be included in discussions?

CCSP Which approach is typically the most efficient method to use for data discovery?

CCSP Which of the following features is a main benefit of PaaS over IaaS?

CCSP Which audit type has been largely replaced by newer approaches since 2011?

CCSP Which of the following can be useful for protecting cloud customers from a denial-of-service (DoS) attack against another customer hosted in the same cloud?

CCSP Which of the following service capabilities gives the cloud customer the least amount of control over configurations and deployments?

CCSP What does the "SOC" acronym refer to with audit reports?

CCSP What does the REST API use to protect data transmissions?

CCSP What strategy involves replacing sensitive data with opaque values, usually with a means of mapping it back to the original value?

CCSP With software-defined networking, what aspect of networking is abstracted from the forwarding of traffic?

CCSP Which of the following does NOT fall under the "IT" aspect of quality of service (QoS)?

CCSP What does dynamic application security testing (DAST) NOT entail?

CCSP Where is an XML firewall most commonly deployed in the environment?

CCSP What type of masking strategy involves replacing data on a system while it passes between the data and application layers?

CCSP Which of the following is a widely used tool for code development, branching, and collaboration?