Page 1 of 12
D320 – Managing Cloud Security (WGU) 2026 | Verified CCSP
Exam Prep Questions & Complete Study Guide
Which phase of the cloud data life cycle requires adherence to export and import
restrictions, including Export Administration Regulations (EAR) and the Wassenaar
Arrangement? - ANSWER-Share
Why is the striping with parity method of storing data used in most redundant array
of independent disks (RAID) configurations? - ANSWER-It allows efficient data
recovery as even if one drive fails, other drives fill in the missing data.
What is the purpose of egress monitoring tools? - ANSWER-They are used to prevent
data from going outside the control of an organization.
A company is looking at different types of cloud storage options. One of the threats to
cloud storage that the company foresees is the possibility of losing forensic artifacts
in the event of an incident response investigation. Which type of cloud storage has
the highest risk of losing forensic artifacts in the event of an incident response
investigation? - ANSWER-Ephemeral
A manager is made aware of a customer complaint about how an application
developed by the company collects personal and environmental information from
the devices it is installed on. Which document should the manager refer to in order
to determine if the company has properly disclosed information about what data it
collects from this application's users? - ANSWER-Privacy notice
An organization needs to store passwords in a database securely. The data should not
be available to system administrators. Which technique should the organization use?
- ANSWER-Hashing
, Page 2 of 12
A company is looking to ensure that the names of individuals in its data in the cloud
are not revealed in the event of a data breach, as the data is sensitive and classified.
Which data masking technique should the company use to prevent attackers from
identifying individuals in the event of a data breach? - ANSWER-Anonymization
An organization needs to quickly identify the document owner in a shared network
folder. Which technique should the organization use to meet this goal? - ANSWER-
Labeling
An organization plans to introduce a new data standard and wants to ensure that
system inventory data will be efficiently discovered and processed. Which type of
data should the organization use to meet this goal? - ANSWER-Structured
An organization implemented an information rights management (IRM) solution to
prevent critical data from being copied without permission and a cloud backup
solution to ensure that the critical data is protected from storage failures. Which IRM
challenge will the organization need to address? - ANSWER-Replication restrictions
A data center engineer is tasked with the destruction of data on solid-state drives
(SSDs). The engineer must ensure that the data is not able to be retrieved. Which
data destruction action should the engineer take to meet this goal? - ANSWER-
Crypto-shredding
An organization wants to gather and interpret logs from its cloud environment.
Which system should the organization use for this task? - ANSWER-Security
Information and Event Management (SIEM)
An organization with a Security Information and Event Management (SIEM) system
wants to minimize errors or missed issues due to human log analysis. Which SIEM
policy should the organization use in this case? - ANSWER-Automated analysis of
data sets
D320 – Managing Cloud Security (WGU) 2026 | Verified CCSP
Exam Prep Questions & Complete Study Guide
Which phase of the cloud data life cycle requires adherence to export and import
restrictions, including Export Administration Regulations (EAR) and the Wassenaar
Arrangement? - ANSWER-Share
Why is the striping with parity method of storing data used in most redundant array
of independent disks (RAID) configurations? - ANSWER-It allows efficient data
recovery as even if one drive fails, other drives fill in the missing data.
What is the purpose of egress monitoring tools? - ANSWER-They are used to prevent
data from going outside the control of an organization.
A company is looking at different types of cloud storage options. One of the threats to
cloud storage that the company foresees is the possibility of losing forensic artifacts
in the event of an incident response investigation. Which type of cloud storage has
the highest risk of losing forensic artifacts in the event of an incident response
investigation? - ANSWER-Ephemeral
A manager is made aware of a customer complaint about how an application
developed by the company collects personal and environmental information from
the devices it is installed on. Which document should the manager refer to in order
to determine if the company has properly disclosed information about what data it
collects from this application's users? - ANSWER-Privacy notice
An organization needs to store passwords in a database securely. The data should not
be available to system administrators. Which technique should the organization use?
- ANSWER-Hashing
, Page 2 of 12
A company is looking to ensure that the names of individuals in its data in the cloud
are not revealed in the event of a data breach, as the data is sensitive and classified.
Which data masking technique should the company use to prevent attackers from
identifying individuals in the event of a data breach? - ANSWER-Anonymization
An organization needs to quickly identify the document owner in a shared network
folder. Which technique should the organization use to meet this goal? - ANSWER-
Labeling
An organization plans to introduce a new data standard and wants to ensure that
system inventory data will be efficiently discovered and processed. Which type of
data should the organization use to meet this goal? - ANSWER-Structured
An organization implemented an information rights management (IRM) solution to
prevent critical data from being copied without permission and a cloud backup
solution to ensure that the critical data is protected from storage failures. Which IRM
challenge will the organization need to address? - ANSWER-Replication restrictions
A data center engineer is tasked with the destruction of data on solid-state drives
(SSDs). The engineer must ensure that the data is not able to be retrieved. Which
data destruction action should the engineer take to meet this goal? - ANSWER-
Crypto-shredding
An organization wants to gather and interpret logs from its cloud environment.
Which system should the organization use for this task? - ANSWER-Security
Information and Event Management (SIEM)
An organization with a Security Information and Event Management (SIEM) system
wants to minimize errors or missed issues due to human log analysis. Which SIEM
policy should the organization use in this case? - ANSWER-Automated analysis of
data sets
