D320 - Managing Cloud Security (Pre-
Assessment) Exam Questions &
Answers (Grade A+)
1. Which phase of the cloud data life cycle requires adherence to
export and import restrictions, including Export Administration
Regulations (EAR) and the Wassenaar Arrangement?
a. Create
b. Share
c. Use
d. Destroy -
correct answer ✅b. Share
2. Why is the striping method of storing data used in most
redundant array of independent disks (RAID) configurations?
a. It prevents outages and attacks from occurring in a cloud
environment.
b. It prevents data from being recovered once it is destroyed using
crypto-shredding.
c. It allows data to be safely distributed and stored in a common
centralized location.
,D320 - Managing Cloud Security (Pre-
Assessment) Exam Questions &
Answers (Grade A+)
d. It allows efficient data recovery as even if one drive fails, other
drives fill in the missing data. -
correct answer ✅d. It allows efficient data recovery as even if one
drive fails, other drives fill in the missing data.
3. What is the purpose of egress monitoring tools?
a. They are used to convert a given set of data or information into a
different value.
b. They are used to prevent data from going outside the control of
an organization.
c. They are used to create data during the Create phase of the cloud
data life cycle.
d. They are used to remove data during the Destroy phase of the
cloud data life cycle. -
correct answer ✅b. They are used to prevent data from going
outside the control of an organization.
4. A company is looking at different types of cloud storage options.
One of the threats to cloud storage that the company foresees is
,D320 - Managing Cloud Security (Pre-
Assessment) Exam Questions &
Answers (Grade A+)
the possibility of losing forensic artifacts in the event of an incident
response investigation.
Which type of cloud storage has the highest risk of losing forensic
artifacts in the event of an incident response investigation?
a. File-based
b. Long-term
c. Block
d. Ephemeral -
correct answer ✅d. Ephemeral
5. A manager is made aware of a customer complaint about how an
application developed by the company collects personal and
environmental information from the devices it is installed on.
Which document should the manager refer to in order to
determine if the company has properly disclosed information about
what data it collects from this application's users?
, D320 - Managing Cloud Security (Pre-
Assessment) Exam Questions &
Answers (Grade A+)
a. Retention policy
b. Breach notification
c. Privacy notice
d. Denial of service -
correct answer ✅c. Privacy notice
6. An organization needs to store passwords in a database securely.
The data should not be available to system administrators.
Which technique should the organization use?
a. Encryption
b. Hashing
c. Encoding
d. Masking -
correct answer ✅b. Hashing
7. A company is looking to ensure that the names of individuals in
its data in the cloud are not revealed in the event of a data breach,
as the data is sensitive and classified.
Assessment) Exam Questions &
Answers (Grade A+)
1. Which phase of the cloud data life cycle requires adherence to
export and import restrictions, including Export Administration
Regulations (EAR) and the Wassenaar Arrangement?
a. Create
b. Share
c. Use
d. Destroy -
correct answer ✅b. Share
2. Why is the striping method of storing data used in most
redundant array of independent disks (RAID) configurations?
a. It prevents outages and attacks from occurring in a cloud
environment.
b. It prevents data from being recovered once it is destroyed using
crypto-shredding.
c. It allows data to be safely distributed and stored in a common
centralized location.
,D320 - Managing Cloud Security (Pre-
Assessment) Exam Questions &
Answers (Grade A+)
d. It allows efficient data recovery as even if one drive fails, other
drives fill in the missing data. -
correct answer ✅d. It allows efficient data recovery as even if one
drive fails, other drives fill in the missing data.
3. What is the purpose of egress monitoring tools?
a. They are used to convert a given set of data or information into a
different value.
b. They are used to prevent data from going outside the control of
an organization.
c. They are used to create data during the Create phase of the cloud
data life cycle.
d. They are used to remove data during the Destroy phase of the
cloud data life cycle. -
correct answer ✅b. They are used to prevent data from going
outside the control of an organization.
4. A company is looking at different types of cloud storage options.
One of the threats to cloud storage that the company foresees is
,D320 - Managing Cloud Security (Pre-
Assessment) Exam Questions &
Answers (Grade A+)
the possibility of losing forensic artifacts in the event of an incident
response investigation.
Which type of cloud storage has the highest risk of losing forensic
artifacts in the event of an incident response investigation?
a. File-based
b. Long-term
c. Block
d. Ephemeral -
correct answer ✅d. Ephemeral
5. A manager is made aware of a customer complaint about how an
application developed by the company collects personal and
environmental information from the devices it is installed on.
Which document should the manager refer to in order to
determine if the company has properly disclosed information about
what data it collects from this application's users?
, D320 - Managing Cloud Security (Pre-
Assessment) Exam Questions &
Answers (Grade A+)
a. Retention policy
b. Breach notification
c. Privacy notice
d. Denial of service -
correct answer ✅c. Privacy notice
6. An organization needs to store passwords in a database securely.
The data should not be available to system administrators.
Which technique should the organization use?
a. Encryption
b. Hashing
c. Encoding
d. Masking -
correct answer ✅b. Hashing
7. A company is looking to ensure that the names of individuals in
its data in the cloud are not revealed in the event of a data breach,
as the data is sensitive and classified.
