D320 - Managing Cloud Security

D320 - Managing Cloud Security 22 studiers today 4.8 (24 reviews) Students also studied Terms in this set (701) Western Governors UniversityD 333 Save WGU Course C838 - Managing Clou...1,037 terms WieldyStone2 Preview CompTIA PenTest+ (PT0-003) Full C...170 terms Jaivir_BawejaPreview Telecomm and Wireless Communica...625 terms JCJC2UPreview

D320 -

80 terms Bah Which phase of the cloud data life cycle requires adherence to export and import restrictions, including Export Administration Regulations (EAR) and the Wassenaar Arrangement?

• Create
• Share
• Use
• Destroy

B Why is the striping method of storing data used in most redundant array of independent disks (RAID) configurations?

• It prevents outages and attacks from occurring in a

cloud environment.

• It prevents data from being recovered once it is

destroyed using crypto-shredding.

• It allows data to be safely distributed and stored in a

common centralized location.

• It allows efficient data recovery as even if one drive

fails, other drives fill in the missing data.D

What is the purpose of egress monitoring tools?

• They are used to convert a given set of data or

information into a different value.

• They are used to prevent data from going outside the

control of an organization.

• They are used to create data during the Create phase

of the cloud data life cycle.

• They are used to remove data during the Destroy

phase of the cloud data life cycle.B A company is looking at different types of cloud storage options. One of the threats to cloud storage that the company foresees is the possibility of losing forensic artifacts in the event of an incident response investigation.Which type of cloud storage has the highest risk of losing forensic artifacts in the event of an incident response investigation?

• File-based
• Long-term
• Block
• Ephemeral

D A manager is made aware of a customer complaint about how an application developed by the company collects personal and environmental information from the devices it is installed on.Which document should the manager refer to in order to determine if the company has properly disclosed information about what data it collects from this application's users?

• Retention policy
• Breach notification
• Privacy notice
• Denial of service

C An organization needs to store passwords in a database securely. The data should not be available to system administrators.Which technique should the organization use?

• Encryption
• Hashing
• Encoding
• Masking

B

A company is looking to ensure that the names of individuals in its data in the cloud are not revealed in the event of a data breach, as the data is sensitive and classified.Which data masking technique should the company use to prevent attackers from identifying individuals in the event of a data breach?

• Crypto-shredding
• Degaussing
• Anonymization
• Randomization

C An organization needs to quickly identify the document owner in a shared network folder.Which technique should the organization use to meet this goal?

• Labeling
• Classification
• Mapping
• Categorization

A An organization plans to introduce a new data standard and wants to ensure that system inventory data will be efficiently discovered and processed.Which type of data should the organization use to meet this goal?

• Structured
• Semi-structured
• Annotated
• Mapped

A An organization implemented an information rights management (IRM) solution to prevent critical data from being copied without permission and a cloud backup solution to ensure that the critical data is protected from storage failures.Which IRM challenge will the organization need to address?

• Jurisdictional conflicts
• Agent conflicts
• Replication restrictions
• Execution restrictions

C

A data center engineer is tasked with the destruction of data on solid-state drives (SSDs). The engineer must ensure that the data is not able to be retrieved.Which data destruction action should the engineer take to meet this goal?

• Overwriting
• Crypto-shredding
• Wiping
• Degaussing

B An organization wants to gather and interpret logs from its cloud environment.Which system should the organization use for this task?

• Simple Network Management Protocol (SNMP)
• Security Information and Event Management (SIEM)
• Business Process Management (BPM)
• Distributed System Management (DSM)

B An organization with a Security Information and Event Management (SIEM) system wants to minimize errors or missed issues due to human log analysis.Which SIEM policy should the organization use in this case?

• Automated analysis of metadata
• Automated analysis of data sets
• Manually generated analysis of data sets
• Manually generated analysis of metadata

B Which software type allows multiple operating systems to run on the same physical server in a virtualized environment?

• Hypervisor
• Container
• Quantum computing
• Blockchain technology

A What is the name of the process of automatically provisioning, configuring, and managing virtual machines and other resources in a virtualized environment?

• Continuous deployment
• Orchestration
• Programmability
• Continuous integration

B