[Nov 25, 2021] CCAK Dumps PDF and Test Engine Exam Questions - PassLeader [Q45-Q67]

Share

[Nov 25, 2021] CCAK Dumps PDF and Test Engine Exam Questions - PassLeader

Verified CCAK exam dumps Q&As with Correct 78 Questions and Answers

NEW QUESTION 45
Which of the following should be of GREATEST concern to an IS auditor reviewing actions taken during a forensic investigation?

  • A. The proper authorities were not notified.
  • B. The investigation report does not indicate a conclusion.
  • C. The handling procedures of the attacked system are not documented.
  • D. An image copy of the attacked system was not taken.

Answer: A

 

NEW QUESTION 46
Cloud applications can use virtual networks and other structures, for hyper-segregated environments.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 47
Which statement best describes why it is important to know how data is being accessed?

  • A. The devices used to access data have different storage formats.
  • B. The device may affect data dispersion.
  • C. The devices used to access data use a variety of operating systems and may have different programs installed on them.
  • D. The devices used to access data use a variety of applications or clients and may have different security characteristics.
  • E. The devices used to access data may have differentownership characteristics.

Answer: D

 

NEW QUESTION 48
How is encryption managed on multi-tenant storage?

  • A. Single key for all data owners
  • B. The answer could be A, B, or C depending on the provider
  • C. C for data subject to the EU Data Protection Directive; B for all others
  • D. Multiple keys per data owner
  • E. One key per data owner

Answer: E

 

NEW QUESTION 49
A defining set of rules composed of claims and attributes of the entities in a transaction, which is used to determine their level of access to cloud-based resources is called what?

  • A. An entitlement matrix
  • B. A support table
  • C. An entrylog
  • D. An access log
  • E. A validation process

Answer: E

 

NEW QUESTION 50
Which of the following is NOT normally a method for detecting and preventing data migration into the cloud?

  • A. URL filters
  • B. Cloud Access and Security Brokers (CASB)
  • C. Database Activity Monitoring
  • D. Intrusion Prevention System
  • E. Data Loss Prevention

Answer: D

 

NEW QUESTION 51
Which cloud storage technology is basically a virtual hard drive for instanced or VMs?

  • A. Platform
  • B. Object storage
  • C. Application
  • D. Volume storage
  • E. Database

Answer: D

 

NEW QUESTION 52
What factors should you understand about the data specifically due to legal, regulatory, and jurisdictional factors?

  • A. The actualsize of the data and the storage format
  • B. The language of the data and how it affects the user
  • C. The fragmentation and encryption algorithms employed
  • D. The implications of storing complex information on simple storage systems
  • E. Thephysical location of the data and how it is accessed

Answer: D

 

NEW QUESTION 53
Which of the following statements are NOT requirements of governance and enterprise risk management in a cloud environment?

  • A. Inspect and account for risksinherited from other members of the cloud supply chain and take active measures to mitigate and contain risks through operational resiliency.
  • B. Negotiate long-term contracts with companies who use well-vetted software application to avoid the transient nature of the cloud environment.
  • C. Provide transparency to stakeholders and shareholders demonstrating fiscal solvency and organizational transparency.
  • D. Respect the interdependency of the risks inherent in the cloud supply chain and communicate the corporate riskposture and readiness to consumers and dependent parties.
  • E. Both B and C.

Answer: B

 

NEW QUESTION 54
A client/server configuration will:

  • A. enhance system performance through the separation of front-end and back-end processes.
  • B. limit the clients and servers relationship by limiting the IS facilities to a single hardware system.
  • C. optimize system performance by having a server on a front-end and clients on a host.
  • D. keep track of all the clients using the IS facilities of a service organization.

Answer: A

 

NEW QUESTION 55
A third-party service provider is hosting a private cloud for an organization. Which of the following findings during an audit of the provider poses the GREATEST risk to the organization?

  • A. Two different hypervisor versions are used due to the compatibility restrictions of some virtual machines.
  • B. 2% of backups had to be rescheduled due to backup media failures.
  • C. The organization's virtual machines share the same hypervisor with virtual machines of other clients.
  • D. 5% of detected incidents exceeded the defined service level agreement (SLA) for escalation.

Answer: C

 

NEW QUESTION 56
Which term is used to describe the use of tools to selectively degrade portions of the cloud to continuously test business continuity?

  • A. Resiliency Planning
  • B. Expected Engineering
  • C. Organized Downtime
  • D. Chaos Engineering
  • E. PlannedOutages

Answer: D

 

NEW QUESTION 57
REST APIs are the standard for web-based services because they run over HTTPS and work well across diverse environments.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 58
Which cloud-based service model enables companies to provide client-based access for partners to databases or applications?

  • A. Infrastructure-as-a-service (IaaS)
  • B. Identity-as-a-service (IDaaS)
  • C. Software-as-a-service (SaaS)
  • D. Platform-as-a-service (PaaS)
  • E. Desktop-as-a-service (DaaS)

Answer: D

 

NEW QUESTION 59
What is true of searching data across cloud environments?

  • A. All cloud-hosted email accounts are easily searchable.
  • B. You can easily search across your environment using any E-Discovery tool.
  • C. Search and discovery time is alwaysfactored into a contract between the consumer and provider.
  • D. You might not have the ability oradministrative rights to search or access all hosted data.
  • E. The cloud provider must conduct the search with the full administrative controls.

Answer: D

 

NEW QUESTION 60
Which concept is a mapping of an identity, including roles, personas, and attributes, to an authorization?

  • A. Entitlement
  • B. Authoritative source
  • C. Authentication
  • D. Federated Identity Management
  • E. Access control

Answer: A

 

NEW QUESTION 61
Segregation of duties would be compromised if:

  • A. database administrators (DBAs) modified the structure of user tables.
  • B. application programmers accessed test data.
  • C. application programmers moved programs into production.
  • D. operations staff modified batch schedules.

Answer: B

 

NEW QUESTION 62
Which of the following is the GREATEST concern associated with migrating computing resources to a cloud virtualized environment?

  • A. An increase in the number of e-discovery requests
  • B. An increase in the potential for data leakage
  • C. An increase in residual risk
  • D. An increase in inherent vulnerability

Answer: B

 

NEW QUESTION 63
CCM: The following list of controls belong to which domain of the CCM?
GRM 06 - Policy GRM 07- Policy Enforcement GRM 08 - Policy Impact on Risk Assessments GRM 09 - Policy Reviews GRM 10 - Risk Assessments GRM 11 - Risk Management Framework

  • A. Governance and Retention Management
  • B. Governance and Risk Management
  • C. Governing and Risk Metrics

Answer: B

 

NEW QUESTION 64
Which of the following would be MOST important to update once a decision has been made to outsource a critical application to a cloud service provider?

  • A. Project portfolio
  • B. IT resource plan
  • C. Business impact analysis (BIA)
  • D. IT budget

Answer: C

 

NEW QUESTION 65
Why is a service type of network typically isolated on different hardware?

  • A. It requires unique security
  • B. It requires distinct access controls
  • C. It has distinct functions from other networks
  • D. It manages the traffic between other networks
  • E. It manages resource pools for cloud consumers

Answer: D

 

NEW QUESTION 66
CCM: A hypothetical company called: "Health4Sure" is located in the United States and provides cloud based services fortracking patient health. The company is compliant with HIPAA/HITECH Act among other industry standards. Health4Sure decides to assess the overall security of their cloud service against the CCM toolkit so that they will be able to present this document topotential clients.
Which of the following approach would be most suitable to assess the overall security posture of Health4Sure's cloud service?

  • A. The CCM columns are mapped to HIPAA/HITECH Act and therefore Health4Sure could verify the CCM controls already covered ad a result of their compliance with HIPPA/HITECH Act. They could then assess the remaining controls. This approach will save time.
  • B. The CCM domain controls are mapped to HIPAA/HITECH Act and therefore Health4Sure could verify the CCM controls already covered as a result of their compliance with HIPPA/HITECH Act. They could then assess the remaining controls thoroughly. This approach saves time while being able to assess the company's overall security posture in an efficient manner.
  • C. The CCM domains are not mapped to HIPAA/HITECH Act. Therefore Health4Sure should assess the security posture of their cloud service against each and every control in the CCM. This approach will allow a thorough assessment of the security posture.

Answer: C

 

NEW QUESTION 67
......

ISACA CCAK Test Engine PDF - All Free Dumps: https://www.passleader.top/ISACA/CCAK-exam-braindumps.html

Get New CCAK Certification – Valid Exam Dumps Questions: https://drive.google.com/open?id=11NMXhhiHEbzt80NFuqlluwgVFuCatzEZ