CIMAPRA19-P03-1 Exam - Topic 1 Question 66 Discussion

Actual exam question for CIMA's CIMAPRA19-P03-1 exam

Question #: 66
Topic #: 1

JNH is a major corporation that stores its customer database in the Cloud JNH has suffered a data breach that has led to customer credit card details being made available for sale on the internet JNH's Head of Security wishes to analyse network traffic at the cloud-based server in order to gain a better understanding of the manner in which the data was intercepted, but has been refused access.

Which of the following is the most likely explanation for the third-party owner's refusal to assist JNH's Head of Security?

AThe Cloud is impregnable and so the breach must have been elsewhere

BThe network data will not have been stored by the server's owner

CThe server will contain data belonging to other clients

DAdmitting the breach would harm the reputation of the Cloud

Show Suggested Answer

Suggested Answer: C, D, F

by Tijuana at Mar 05, 2025, 08:57 AM

Limited Time Offer

25%

Off

Get Premium CIMAPRA19-P03-1 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Glory

3 months ago

Isn't it weird that they won't help JNH analyze the traffic?

upvoted 0 times

...

Paola

3 months ago

I think admitting the breach would definitely hurt their reputation.

upvoted 0 times

...

Remona

3 months ago

Wait, how can they be sure the breach wasn't from their end?

upvoted 0 times

...

Chantay

4 months ago

Totally agree, they can't just let anyone access that info!

upvoted 0 times

...

Phuong

4 months ago

The server will contain data belonging to other clients.

upvoted 0 times

...

Gilma

4 months ago

I wonder if the refusal is more about reputation. I mean, admitting a breach could really damage the cloud provider's image, so option D might be a possibility too.

upvoted 0 times

...

Detra

4 months ago

I feel like I saw a similar question about data ownership in cloud environments. Maybe the refusal is because the network data isn't stored by the server's owner, which could relate to option B.

upvoted 0 times

...

Beatriz

4 months ago

I'm not entirely sure, but I think option C makes sense because if they let JNH access the data, it could expose other customers' information too.

upvoted 0 times

...

Joni

5 months ago

I remember studying about shared responsibility models in cloud security, so I think the third-party might be worried about other clients' data being involved.

upvoted 0 times

...

Cherry

5 months ago

Admitting the breach would harm the reputation of the Cloud - that's a good point. The owner may be trying to cover that up.

upvoted 0 times

...

Asha

5 months ago

The server containing data belonging to other clients makes a lot of sense. The owner likely doesn't want to expose that.

upvoted 0 times

...

Gertude

5 months ago

The network data not being stored by the server owner is an interesting possibility. I'll need to consider that angle.

upvoted 0 times

...

Brent

5 months ago

The Cloud being "impregnable" is probably not the real reason. That's just an excuse - the data breach happened, so there must be more to it.

upvoted 0 times

...

Aimee

5 months ago

This seems like a tricky one. I'll need to think carefully about the potential reasons the third-party owner might refuse access.

upvoted 0 times

...

Felix

9 months ago

The cloud provider is probably like 'we don't see any data breaches here, just a bunch of fluffy clouds.'

upvoted 0 times

Carol

8 months ago

C) The server will contain data belonging to other clients

upvoted 0 times

...

Annmarie

8 months ago

B) The network data will not have been stored by the server's owner

upvoted 0 times

...

Trevor

8 months ago

A) The Cloud is impregnable and so the breach must have been elsewhere

upvoted 0 times

...

Sheridan

9 months ago

Maybe the cloud provider is just 'clouding' the issue. Get it? Clouding? *chuckles*

upvoted 0 times

Lyda

8 months ago

D) Admitting the breach would harm the reputation of the Cloud

upvoted 0 times

...

Catarina

8 months ago

C) The server will contain data belonging to other clients

upvoted 0 times

...

Buddy

9 months ago

B) The network data will not have been stored by the server's owner

upvoted 0 times

...

Eveline

9 months ago

A) The Cloud is impregnable and so the breach must have been elsewhere

upvoted 0 times

...

Marvel

10 months ago

I bet the cloud provider is like 'what happens in the cloud, stays in the cloud.' Not very helpful, is it?

upvoted 0 times

Jennie

9 months ago

C) The server will contain data belonging to other clients

upvoted 0 times

...

Albert

10 months ago

B) The network data will not have been stored by the server's owner

upvoted 0 times

...

Leonardo

10 months ago

A) The Cloud is impregnable and so the breach must have been elsewhere

upvoted 0 times

...

Orville

10 months ago

D is the answer. The cloud provider doesn't want to admit they had a security breach and tarnish their reputation.

upvoted 0 times

...

Oretha

10 months ago

Option C seems the most likely. The server probably contains data from other clients, and the owner wouldn't want to compromise their privacy.

upvoted 0 times

Twanna

9 months ago

D) Admitting the breach would harm the reputation of the Cloud

upvoted 0 times

...

Doug

9 months ago

C) The server will contain data belonging to other clients

upvoted 0 times

...

Shawn

10 months ago

B) The network data will not have been stored by the server's owner

upvoted 0 times

...

Pamella

10 months ago

A) The Cloud is impregnable and so the breach must have been elsewhere

upvoted 0 times

...

Carisa

11 months ago

But what about option D? Could it be that admitting the breach would harm the reputation of the Cloud?

upvoted 0 times

...

Lynelle

11 months ago

That makes sense. They wouldn't want to risk exposing other clients' data.

upvoted 0 times

...

Ashanti

11 months ago

I think the server owner refused access because the data may belong to other clients.

upvoted 0 times

...