Free Access CloudSecurityAlliance.CCSK.v2022-08-09.q113 Practice Test (Page 3)

Question 6

In ability to provide enough capacity to the cloud customer can lead to which of the following risk:

A.Resource Exhaustion

B.Data Breach

C.Resource Utilization

D.Data Dispersion

Question 7

Which is the set of technologies that are designed to detect conditions indicative of a security vulnerability in an application in its running state?

A.STRIDE

B.Static application security Testing(SAST)

C.Dynamic application security testing(DAST)

D.Enterprise Threat Modelling

Question 8

According to Cloud Security Alliance logical model of cloud computing, which of the following defines the protocols and mechanisms that provide the interface between the infrastructure layer and the other layers.

A.Metastructure

B.Infostructure

C.Infrastructure

D.Applistructure

Question 9

Which of the followinglS0 Standard provides Code of practice for information security controls based on IS0/IEC 27002for cloud services?

A.ISO 27018

B.ISO 27034

C.ISO 27032

D.ISO 27017

Question 10

CCM: A hypothetical company called: "Health4Sure" is located in the United States and provides cloud based services for tracking patient health. The company is compliant with HIPAA/HITECH Act among other industry standards. Health4Sure decides to assess the overall security of their cloud service against the CCM toolkit so that they will be able to present this document to potential clients.
Which of the following approach would be most suitable to assess the overall security posture of Health4Sure's cloud service?

A.The CCM domain controls are mapped to HIPAA/HITECH Act and therefore Health4Sure could verify the CCM controls already covered as a result of their compliance with HIPPA/HITECH Act. They could then assess the remaining controls thoroughly. This approach saves time while being able to assess the company's overall security posture in an efficient manner.

B.The CCM domains are not mapped to HIPAA/HITECH Act. Therefore Health4Sure should assess the security posture of their cloud service against each and every control in the CCM. This approach will allow a thorough assessment of the security posture.

C.The CCM columns are mapped to HIPAA/HITECH Act and therefore Health4Sure could verify the CCM controls already covered ad a result of their compliance with HIPPA/HITECH Act. They could then assess the remaining controls. This approach will save time.

Other Version: 694CloudSecurityAlliance.CCSK.v2025-03-13.q149; 1332CloudSecurityAlliance.CCSK.v2024-01-10.q114; 3135CloudSecurityAlliance.CCSK.v2022-09-07.q111; 3060CloudSecurityAlliance.CCSK.v2022-02-09.q113; 119Cloud-Security-Alliance.Trainingdump.CCSK.v2021-09-30.by.bradley.109q.pdf

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 157PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 147Salesforce.Data-Architect.v2025-09-05.q216; 141Adobe.AD0-E605.v2025-09-05.q50

Question 6

Question 7

Question 8

Question 9

Question 10

Download PDF File