CCSK Domain 1 Exam Questions
with 100% Correct Answers
Which document type is stored in the STAR registry for Level 1 entries?
A. CCM
B. CAIQ
C. Vendor statements of compliance
D. Government-issued authority to operate letter - Answer- B. CAIQ
Providers upload copies of filled-out CAIQ responses.
ISO and or SOC can be used as part of a Level 2 STAR entry.
Which service model has the provider assuming the most responsibility?
A. SaaS
B. PaaS
C. IaaS
D. They're all the same. - Answer- A. SaaS
Orchestration enables a controller to request resources from a pool of resources. How
is this done?
A. Ticketing system prioritizes clients based on support level
B. Through the use of REST APIs
C. Through the use of RPC
D. Via network calls - Answer- B. Through the use of REST APIs
Orchestration generally uses REST API calls.
(It is the BEST answer)
You are instructed to build a server with eight CPUs and 8GB of RAM. Which service
model would you use?
A. SaaS
B. PaaS
C. IaaS
D. No cloud provider supports a machine with 8 CPUs - Answer- C. IaaS
-access to core foundational computing
, Your company is using a Pass provider to host a Python 2.7 based app. One day the
provider sends you an email stating they will no longer support it and all apps must be
updated to the latest version in two weeks. What is the first action you should take.
A. Test the app in the latest version of Python.
B. Tell the provider you can't make the deadline
C. Providers are restricted by law from doing this.
D. Launch a lawsuit against the provider for pain and suffering. - Answer- A. Test the
app in the latest version of Python
In which logical model would you install a virtual firewall?
A. Infostructure
B. Applistructure
C. Metastructure
D. Infrastructure - Answer- B. Applistructure
What are the steps of the cloud security process model? - Answer- 1st make sure to
classify your data
1) Identify required security and compliance controls that must be in place.
2) Select the cloud service provider, the service model and the deployment model.
3) Define the architecture - components and services.
4) Assess security controls. Know your responsibility.
5) Identify control gaps.
6) Design and implement controls to fill the gaps.
7) Manage changes over time
Which logical model holds the management plane that is exposed to customers?
A. Infostructure
B. Applistructure
C. Metastructure
D. Infrastructure - Answer- C. Metastructure
You are running a web server in an IaaS environment. You get a call from a customer
saying the server appears to have been compromised. Which logical model has been
impacted?
with 100% Correct Answers
Which document type is stored in the STAR registry for Level 1 entries?
A. CCM
B. CAIQ
C. Vendor statements of compliance
D. Government-issued authority to operate letter - Answer- B. CAIQ
Providers upload copies of filled-out CAIQ responses.
ISO and or SOC can be used as part of a Level 2 STAR entry.
Which service model has the provider assuming the most responsibility?
A. SaaS
B. PaaS
C. IaaS
D. They're all the same. - Answer- A. SaaS
Orchestration enables a controller to request resources from a pool of resources. How
is this done?
A. Ticketing system prioritizes clients based on support level
B. Through the use of REST APIs
C. Through the use of RPC
D. Via network calls - Answer- B. Through the use of REST APIs
Orchestration generally uses REST API calls.
(It is the BEST answer)
You are instructed to build a server with eight CPUs and 8GB of RAM. Which service
model would you use?
A. SaaS
B. PaaS
C. IaaS
D. No cloud provider supports a machine with 8 CPUs - Answer- C. IaaS
-access to core foundational computing
, Your company is using a Pass provider to host a Python 2.7 based app. One day the
provider sends you an email stating they will no longer support it and all apps must be
updated to the latest version in two weeks. What is the first action you should take.
A. Test the app in the latest version of Python.
B. Tell the provider you can't make the deadline
C. Providers are restricted by law from doing this.
D. Launch a lawsuit against the provider for pain and suffering. - Answer- A. Test the
app in the latest version of Python
In which logical model would you install a virtual firewall?
A. Infostructure
B. Applistructure
C. Metastructure
D. Infrastructure - Answer- B. Applistructure
What are the steps of the cloud security process model? - Answer- 1st make sure to
classify your data
1) Identify required security and compliance controls that must be in place.
2) Select the cloud service provider, the service model and the deployment model.
3) Define the architecture - components and services.
4) Assess security controls. Know your responsibility.
5) Identify control gaps.
6) Design and implement controls to fill the gaps.
7) Manage changes over time
Which logical model holds the management plane that is exposed to customers?
A. Infostructure
B. Applistructure
C. Metastructure
D. Infrastructure - Answer- C. Metastructure
You are running a web server in an IaaS environment. You get a call from a customer
saying the server appears to have been compromised. Which logical model has been
impacted?
