Which of the following roles is responsible for preparing systems for the cloud, administering and monitoring services, and managing inventory and assets?
Answer : C
The cloud service operations manager is responsible for preparing systems for the cloud, administering and monitoring services, providing audit data as requested or required, and managing inventory and assets.
To protect data on user devices in a BYOD environment, the organization should consider requiring all the following, except:
Answer : C
Although all the other options are ways to harden a mobile device, two-person integrity is a concept that has nothing to do with the topic, and, if implemented, would require everyone in your organization to walk around in pairs while using their mobile devices.
Which type of controls are the SOC Type 1 reports specifically focused on?
Answer : C
SOC Type 1 reports are focused specifically on internal controls as they relate to financial reporting.
Which of the following would NOT be considered part of resource pooling with an Infrastructure as a Service implementation?
Answer : B
Infrastructure as a Service pools the compute resources for platforms and applications to build upon, including CPU, memory, and storage. Applications are not part of an IaaS offering from the cloud provider.
Which networking concept in a cloud environment allows for network segregation and isolation of IP spaces?
Answer : D
A virtual area network (VLAN) allows the logical separation and isolation of networks and IP spaces to provide enhanced security and controls.
In order to prevent cloud customers from potentially consuming enormous amounts of resources within a cloud environment and thus having a negative impact on other customers, what concept is commonly used by a cloud provider?
Answer : A
A limit puts a maximum value on the amount of resources that may be consumed by either a system, a service, or a cloud customer. It is commonly used to prevent one entity from consuming enormous amounts of resources and having an operational impact on other tenants within the same cloud system. Limits can either be hard or somewhat flexible, meaning a customer can borrow from other customers while still having their actual limit preserved. A reservation is a guarantee to a cloud customer that a certain level of resources will always be available to them, regardless of what operational demands are currently placed on the cloud environment. Both cap and throttle are terms that sound similar to limit, but they are not the correct terms in this case.
Which of the following is the sole responsibility of the cloud provider, regardless of which cloud model is used?
Answer : C
Regardless of which cloud-hosting model is used, the cloud provider always has sole responsibility for the physical environment.