최신 CCSK 무료덤프 - Cloud Security Alliance Certificate of Cloud Security Knowledge (v4.0)

A. PBAC eliminates the need for defining and managing user roles and permissions.

B. PBAC allows enforcement of granular, context-aware security policies using multiple attributes.

C. PBAC is easier to implement and manage compared to Role-Based Access Control (RBAC).

D. PBAC ensures that access policies are consistent across all cloud providers and platforms.

A. Inspect and account for risks inherited from other members of the cloud supply chain and take active measures to mitigate and contain risks through operational resiliency.

B. Respect the interdependency of the risks inherent in the cloud supply chain and communicate the corporate risk posture and readiness to consumers and dependent parties.

C. Provide transparency to stakeholders and shareholders demonstrating fiscal solvency and organizational transparency.

D. Both B and C.

E. Negotiate long-term contracts with companies who use well-vetted software application to avoid the transient nature of the cloud environment.

A. To ensure compliance with all regulatory requirements

B. To organize control objectives for achieving desired security outcomes

C. To implement detailed procedural instructions for security measures

D. To provide tools for automated security management

A. To document security and privacy controls of cloud offerings

B. To provide cloud service rate comparisons

C. To certify cloud services for regulatory compliance

D. To manage data residency and localization requirements

A. Infrastructure as code

B. Component credentials

C. Application integration

D. Immutable infrastructure

A. True

B. False

A. Several countries which have agreed to define their identities with
similar attributes

B. A library of data definitions

C. A group of entities which have decided to exist together in a single cloud

D. Identities which share similar attributes

E. The connection of one identity repository to another

A. Both B and D.

B. Maintaining customer managed key management and revoking or deleting keys from the key management system to prevent the data from being accessed again.

C. Keep the keys stored on the client side so that they are secure and so that the users have the ability to delete their own data.

D. Allowing the cloud provider to manage your keys so that they have the ability to access and delete the data from the main and back-up storage.

E. Practice Integration of Duties (IOD) so that everyone is able to delete the encrypted data.

A. AI workloads do not require special security considerations compared to other workloads.

B. AI workloads should be openly accessible to foster collaboration and innovation.

C. AI workloads should be isolated in secure environments with strict access controls.

D. Security practices for AI workloads should focus solely on protecting the AI models.

A. You should always open traffic between workloads in the same virtual subnet for better visibility.

B. You should implement a default deny with cloud firewalls.

C. You should apply cloud firewalls on a per-network basis.

D. You should implement a default allow with cloud firewalls and then restrict as necessary.

E. You should deploy your cloud firewalls identical to the existing firewalls.