Security Exam Questions and Answers
Which value can be achieved by the ability to pool resources in cloud computing? -
answer- economies of scale and agility
Which cloud solution is hosted in-house and usually is supported by a third party? -
answer- on-premises
Which software development concept that also has been applied more generally to
IT says that additional future costs for rework are anticipated due to an earlier
decision or course of action that was necessary for agility but was not necessarily
the most optimal or appropriate decision or course of action? - answer- technical
debt
In which cloud service model are customers responsible for securing their virtual
machines and the virtual machine operating systems, and for operating system
runtime environments, application software, and application data?
A. platform as a service (PaaS)
B. identity as a service (IaaS)
C. software as a service (SaaS)
D. infrastructure as a service (IaaS) - answer- D
Which type of hypervisor is hosted and runs within an operating system
environment?
A. Type 1
B. Type 2
C. Type 3
D. Type 4 - answer- B
Which cloud security best practice is deployed to ensure that every person who
views or works with your data has access only to what is absolutely necessary? -
answer- set appropriate privileges
Which security consideration is associated with inadvertently missed anti-malware
and security patch updates to virtual machines? - answer- dormant VMs
Which cloud security compliance requirement uses granular policy definitions to
govern access to SaaS applications and resources in the public cloud and to apply
network segmentation? - answer- access governance
Which DevOps CI/CD pipeline feature requires developers to integrate code into a
repository several times per day for automated testing?
A. continuous delivery
B. continuous deployment
C. continuous identity
D. continuous integration - answer- D