Free ISC2 CCSP Exam Dumps and CCSP Exam Questions

Question No: 21

MultipleChoice

Of the following, which is probably the most significant risk in a managed cloud environment?

Response:

Options

ADDoS

BManagement plane breach

CGuest escape

DPhysical attack on the utility service lines

Question No: 22

MultipleChoice

Which of the following would probably best aid an organization in deciding whether to migrate from a legacy environment to a particular cloud provider?

Response:

Options

ARate sheets comparing a cloud provider to other cloud providers

BCloud provider offers to provide engineering assistance during the migration

CThe cost/benefit measure of closing the organization's relocation site (hot site/warm site) and using the cloud for disaster recovery instead

DSLA satisfaction surveys from other (current and past) cloud customers

Question No: 23

MultipleChoice

What is the primary security mechanism used to protect SOAP and REST APIs?

Response:

Options

AFirewalls

BXML firewalls

CEncryption

DWAFs

Question No: 24

MultipleChoice

Which of the following is not one of the types of controls?

Response:

Options

ATransitional

BAdministrative

CTechnical

DPhysical

Question No: 25

MultipleChoice

A cloud data encryption situation where the cloud customer retains control of the encryption keys and the cloud provider only processes and stores the data could be considered a ____________.

Response:

Options

AThreat

BRisk

CHybrid cloud deployment model

DCase of infringing on the rights of the provider

Question No: 26

MultipleChoice

Data transformation in a cloud environment should be of great concern to organizations considering cloud migration because __________ could affect data classification processes/implementations.

Response:

Options

AMultitenancy

BVirtualization

CRemote access

DPhysical distance

Question No: 27

MultipleChoice

Which of the following BCDR testing methodologies is least intrusive?

Response:

Options

AWalk-through

BSimulation

CTabletop

DFull test

Question No: 28

MultipleChoice

The Restatement (Second) Conflict of Law refers to which of the following?

Response:

Options

AThe basis for deciding which laws are most appropriate in a situation where conflicting laws exist

BWhen judges restate the law in an opinion

CHow jurisdictional disputes are settled

DWhether local or federal laws apply in a situation

Question No: 29

MultipleChoice

Although performing BCDR tests at regular intervals is a best practice to ensure processes and documentation are still relevant and efficient, which of the following represents a reason to conduct a BCDR review outside of the regular interval?

Response:

Options

AStaff changes

BApplication changes

CRegulatory changes

DManagement changes

Question No: 30

MultipleChoice

What type of software is often considered secured and validated via community knowledge?

Response:

Options

AProprietary

BObject-oriented

COpen source

DScripting

Free ISC2 CCSP Exam Dumps - Page 3