ISC Certified Cloud Security Professional - CCSP Exam Practice Test

Security is a critical yet often overlooked consideration for BCDR planning.
At which stage of the planning process should security be involved?

TLS provides and ________ for ________ communications.

Where is an XML firewall most commonly deployed in the environment?

Which of the following characteristics is associated with digital rights management (DRM) solutions (sometimes referred to as information rights management, or IRM)?

Aside from the fact that the cloud customer probably cannot locate/reach the physical storage assets of the cloud provider, and that wiping an entire storage space would impact other customers, why would degaussing probably not be an effective means of secure sanitization in the cloud?

Which phase of the cloud data lifecycle also typically entails the process of data classification?

The Open Web Application Security Project (OWASP) Top Ten is a list of web application security threats that is composed by a member-driven OWASP committee of application development experts and published approximately every 24 months. The 2013 OWASP Top Ten list includes "unvalidated redirects and forwards." Which of the following is a good way to protect against this problem?

Although the United States does not have a single, comprehensive privacy and regulatory framework, a number of specific regulations pertain to types of data or populations.
Which of the following is NOT a regulatory system from the United States federal government?

Which cloud deployment model would be ideal for a group of universities looking to work together, where each university can gain benefits according to its specific needs?

It's important to maintain a current asset inventory list, including surveying your environment on a regular basis, in order to ____________.
Response:

Which of the following technologies is used to monitor network traffic and notify if any potential threats or attacks are noticed?

What is used with a single sign-on system for authentication after the identity provider has successfully authenticated a user?

Which of the following provides assurance, to a predetermined acceptable level of certainty, that an entity is indeed who they claim to be?

The GAPP framework was developed through a joint effort between the major Canadian and American professional accounting associations in order to assist their members with managing and preventing risks to the privacy of their data and customers.
Which of the following is the meaning of GAPP?

Which of the following is a risk that stems from a virtualized environment?
Response: