Free Online Cloud Security Alliance CCAK Practice Test

Prepare Your Cloud Security Alliance CCAK Exam Questions with Free online CCAK Practice Test. Get Brilliant Certificate of Cloud Auditing Knowledge Exam Results with Valid CCAK Exam Dumps.

Page: 1 / 47

Total 231 Questions | Updated On: May 16, 2024

Add To Cart

Question 1

The control domain feature within a Cloud Controls Matrix (CCM) represents:

A : CCM's ability to scan and check Active Directory, LDAP, and x.500 directories for suspicious and/or privileged user accounts.

B : CCM's ability to scan for anomalies in DNS zones in order to detect DNS spoofing, DNS hijacking, DNS cache poisoning, and similar threats.

C : a logical grouping of security controls addressing the same category of IT risks or information security concerns.

D : a set of application programming interfaces (APIs) that allows a cloud consumer to restrict the replication area within a well-defined jurisdictional perimeter.

Answer: C

Question 2

Which of the following is an important challenge in the design and building of a cloud compliance program?

A : Determining the total cost of all cloud components

B : Identifying all cloud components used in the organization

C : Assigning risk ownership for the cloud components

D : Understanding the cloud computing context

Answer: C

Question 3

In a multi-level supply chain structure where cloud service provider A relies on other sub cloud services, the provider should ensure that any compliance requirements relevant to the provider are:

A : passed to the sub cloud service providers based on the sub cloud service providers’ geographic location.

B : passed to the sub cloud service providers

C : treated as confidential information and withheld from all sub cloud service providers.

D : treated as sensitive information and withheld from certain sub cloud service providers

Answer: B

Question 4

Management planes deployed in cloud environments may pose a risk of potentially allowing access to the entire environment. Which of the following controls is MOST appropriate for mitigating this risk?

A : Regular audits

B : Increased monitoring

C : Change management

D : Access restriction

Answer: D

Question 5

What data center and physical security measures should a cloud customer consider when assessing a cloud service provider?

A : Assess use of monitoring systems to control ingress and egress points of entry to the data center

B : Implement physical security perimeters to safeguard personnel, data and information systems.

C : Conduct a due diligence to verify the cloud provider applies adequate physical security measures.

D : Review internal policies and procedures for relocation of hardware and software to an offsite location

Answer: C

Page: 1 / 47

Total 231 Questions | Updated On: May 16, 2024

Add To Cart