ISC2 CCSP Exam Questions Instant Access - No Installation Required

Question 1

Modern web service systems are designed for high availability and resiliency. Which concept pertains to the ability to detect problems within a system, environment, or application and programmatically invoke redundant systems or processes for mitigation?

AElasticity

BRedundancy

CFault tolerance

DAutomation

Answer : C

Fault tolerance allows a system to continue functioning, even with degraded performance, if portions of it fail or degrade, without the entire system or service being taken down. It can detect problems within a service and invoke compensating systems or functions to keep functionality going. Although redundancy is similar to fault tolerance, it is more focused on having additional copies of systems available, either active or passive, that can take up services if one system goes down. Elasticity pertains to the ability of a system to resize to meet demands, but it is not focused on system failures. Automation, and its role in maintaining large systems with minimal intervention, is not directly related to fault tolerance.

Topic 4, Exam Pool D

Question 2

Which of the following areas of responsibility would be shared between the cloud customer and cloud provider within the Software as a Service (SaaS) category?

AData

BGovernance

CApplication

DPhysical

Answer : C

With SaaS, the application is a shared responsibility between the cloud provider and cloud customer. Although the cloud provider is responsible for deploying, maintaining, and securing the application, the cloud customer does carry some responsibility for the configuration of users and options. Regardless of the cloud service category used, the physical environment is always the sole responsibility of the cloud provider. With all cloud service categories, the data and governance are always the sole responsibility of the cloud customer.

Question 3

Along with humidity, temperature is crucial to a data center for optimal operations and protection of equipment.

Which of the following is the optimal temperature range as set by ASHRAE?

A69.8 to 86.0 degrees Fahrenheit (21 to 30 degrees Celsius)

B51.8 to 66.2 degrees Fahrenheit (11 to 19 degrees Celsius)

C64.4 to 80.6 degrees Fahrenheit (18 to 27 degrees Celsius)

D44.6 to 60.8 degrees Fahrenheit (7 to 16 degrees Celsius)

Answer : C

The American Society of Heating, Refrigeration, and Air Conditioning Engineers (ASHRAE) recommends 64.4 to 80.6 degrees Fahrenheit (or 18 to 27 degrees Celsius) as the optimal temperature range for data centers. None of these options is the recommendation from ASHRAE.

Question 4

Apart from using encryption at the file system level, what technology is the most widely used to protect data stored in an object storage system?

ATLS

BHTTPS

CVPN

DIRM

Answer : D

Information rights management (IRM) technologies allow security controls and policies to be enforced on a data object regardless of where it resides. They also allow for extended controls such as expirations and copying restrictions, which are not available through traditional control mechanisms. Hypertext Transfer Protocol Secure (HTTPS), virtual private network (VPN), and Transport Layer Security (TLS) are all technologies and protocols that are widely used with cloud implementations for secure access to systems and services and likely will be used in conjunction with other object data protection strategies.

Question 5

Which aspect of cloud computing makes it very difficult to perform repeat audits over time to track changes and compliance?

AVirtualization

BMultitenancy

CResource pooling

DDynamic optimization

Answer : A

Cloud environments will regularly change virtual machines as patching and versions are changed. Unlike a physical environment, there is little continuity from one period of time to another. It is very unlikely that the same virtual machines would be in use during a repeat audit.

Question 6

Which format is the most commonly used standard for exchanging information within a federated identity system?

AXML

BHTML

CSAML

DJSON

Answer : C

Security Assertion Markup Language (SAML) is the most common data format for information exchange within a federated identity system. It is used to transmit and exchange authentication and authorization data.XML is similar to SAML, but it's used for general-purpose data encoding and labeling and is not used for the exchange of authentication and authorization data in the way that SAML is for federated systems. JSON is used similarly to XML, as a text-based data exchange format that typically uses attribute-value pairings, but it's not used for authentication and authorization exchange. HTML is used only for encoding web pages for web browsers and is not used for data exchange--and certainly not in a federated system.

Question 7

The GAPP framework was developed through a joint effort between the major Canadian and American professional accounting associations in order to assist their members with managing and preventing risks to the privacy of their data and customers.

Which of the following is the meaning of GAPP?

AGeneral accounting personal privacy

BGenerally accepted privacy practices

CGenerally accepted privacy principles

DGeneral accounting privacy policies

Answer : C

ISC2 Certified Cloud Security Professional CCSP Exam Questions