ISC2 CCSP Exam Practice Test Instant Access

Question 1

Which of the following report is most aligned with financial control audits?

ASSAE 16

BSOC 2

CSOC 1

DSOC 3

Answer : C

The SOC 1 report focuses primarily on controls associated with financial services. While IT controls are certainly part of most accounting systems today, the focus is on the controls around those financial systems.

Question 2

Which of the following frameworks focuses specifically on design implementation and management?

AISO 31000:2009

BISO 27017

CNIST 800-92

DHIPAA

Answer : A

ISO 31000:2009 specifically focuses on design implementation and management. HIPAA refers to health care regulations, NIST 800-92 is about log management, and ISO 27017 is about cloud specific security controls.

Question 3

Gap analysis is performed for what reason?

ATo begin the benchmarking process

BTo assure proper accounting practices are being used

CTo provide assurances to cloud customers

DTo ensure all controls are in place and working properly

Answer : A

The primary purpose of the gap analysis is to begin the benchmarking process against risk and security standards and frameworks.

Question 4

Which of the following components are part of what a CCSP should review when looking at contracting with a cloud service provider?

ARedundant uplink grafts

BBackground checks for the provider's personnel

CThe physical layout of the datacenter

DUse of subcontractors

Answer : D

The use of subcontractors can add risk to the supply chain and should be considered; trusting the provider's management of their vendors and suppliers (including subcontractors) is important to trusting the provider. Conversely, the customer is not likely to be allowed to review the physical design of the datacenter (or, indeed, even know the exact location of the datacenter) or the personnel security specifics for the provider's staff. ''Redundant uplink grafts'' is a nonsense term used as a distractor.

Question 5

Which of the following storage types is most closely associated with a database-type storage implementation?

AObject

BUnstructured

CVolume

DStructured

Answer : D

Structured storage involves organized and categorized data, which most closely resembles and operates like a database system would.

Question 6

Which of the following best describes data masking?

AA method for creating similar but inauthentic datasets used for software testing and user training.

BA method used to protect prying eyes from data such as social security numbers and credit card data.

CA method where the last few numbers in a dataset are not obscured. These are often used for authentication.

DData masking involves stripping out all digits in a string of numbers so as to obscure the original number.

Answer : A

All of these answers are actually correct, but A is the best answer, because it is the most general, includes the others, and is therefore the optimum choice. This is a good example of the type of question that can appear on the actual exam.

Question 7

APIs are defined as which of the following?

AA set of protocols, and tools for building software applications to access a web-based software application or tool

BA set of routines, standards, protocols, and tools for building software applications to access a web-based software application or tool

CA set of standards for building software applications to access a web-based software application or tool

DA set of routines and tools for building software applications to access web-based software applications

Answer : B

All the answers are true, but B is the most complete.

ISC2 Certified Cloud Security Professional Exam Practice Test