Exam (elaborations)
WGU D320 - Managing Cloud Security (2024) Quiz Bank Questions With Complete Answers.
- Course
- Institution
WGU D320 - Managing Cloud Security (2024) Quiz Bank Questions With Complete Answers.
[Show more]
Content preview
WGU D320 - Managing Cloud Security (2024) Quiz Bank Questions With Complete Answers.Which phase of the cloud data life cycle requires adherence to export and import restrictions, including Export Administration Regulations (EAR) and the Wassenaar Arrangement?
A) Create
B) Share
C) Use
D) Destroy Answer- B
Why is the striping method of storing data used in most redundant array of independent disks (RAID) configurations?
A) It prevents outages and attacks from occurring in a cloud environment.
B) It prevents data from being recovered once it is destroyed using crypto-shredding.
C) It allows data to be safely distributed and stored in a common centralized location.
D) It allows efficient data recovery as even if one drive fails, other drives fill in the missing data. Answer- D
What is the purpose of egress monitoring tools?
A) They are used to convert a given set of data or information into a different value.
B) They are used to prevent data from going outside the control of an organization.
C) They are used to create data during the Create phase of the cloud data life cycle.
D) They are used to remove data during the Destroy phase of the cloud data life cycle. Answer- B
A company is looking at different types of cloud storage options. One of the threats to cloud storage that the company foresees is the possibility of losing forensic artifacts in the event of an incident response investigation. Which type of cloud storage has the highest risk of losing forensic artifacts in the event of an incident response investigation?
A) File-based
B) Long-term C) Block
D) Ephemeral Answer- D
A manager is made aware of a customer complaint about how an application developed by the company collects personal and environmental information from the
devices it is installed on. Which document should the manager refer to in order to determine if the company has properly disclosed information about what data it collects from this application's users?
A) Retention policy
B) Breach notification
C) Privacy notice
D) Denial of service Answer- C
An organization needs to store passwords in a database securely. The data should not be available to system administrators.
Which technique should the organization use?
A) Encryption
B) Hashing
C) Encoding
D) Masking Answer- B
A company is looking to ensure that the names of individuals in its data in the cloud are not revealed in the event of a data breach, as the data is sensitive and classified.
Which data masking technique should the company use to prevent attackers from identifying individuals in the event of a data breach?
A) Crypto-shredding
B) Degaussing
C) Anonymization
D) Randomization Answer- C
An organization needs to quickly identify the document owner in a shared network folder.
Which technique should the organization use to meet this goal?
A) Labeling
B) Classification
C) Mapping
D) Categorization Answer- A
An organization plans to introduce a new data standard and wants to ensure that system inventory data will be efficiently discovered and processed.
Which type of data should the organization use to meet this goal?
A) Structured
B) Semi-structured C) Annotated
D) Mapped Answer- A
An organization implemented an information rights management (IRM) solution to prevent critical data from being copied without permission and a cloud backup solution to ensure that the critical data is protected from storage failures. Which IRM challenge will the organization need to address?
A) Jurisdictional conflicts
B) Agent conflicts
C) Replication restrictions
D) Execution restrictions Answer- C
A data center engineer is tasked with the destruction of data on solid-state drives (SSDs). The engineer must ensure that the data is not able to be retrieved. Which data destruction action should the engineer take to meet this goal?
A) Overwriting
B) Crypto-shredding
C) Wiping
D) Degaussing Answer- B
An organization wants to gather and interpret logs from its cloud environment. Which system should the organization use for this task?
A) Simple Network Management Protocol (SNMP)
B) Security Information and Event Management (SIEM)
C) Business Process Management (BPM)
D) Distributed System Management (DSM) Answer- B
An organization with a Security Information and Event Management (SIEM) system wants to minimize errors or missed issues due to human log analysis.
Which SIEM policy should the organization use in this case?
A) Automated analysis of metadata
B) Automated analysis of data sets
C) Manually generated analysis of data sets
D) Manually generated analysis of metadata Answer- B
Which software type allows multiple operating systems to run on the same physical server in a virtualized environment?
A) Hypervisor
B) Container
C) Quantum computing
D) Blockchain technology Answer- A What is the name of the process of automatically provisioning, configuring, and managing virtual machines and other resources in a virtualized environment?
A) Continuous deployment
B) Orchestration
C) Programmability
D) Continuous integration Answer- B
Which cloud computing characteristic allows customers to manage their utilization by
only paying for the resources used?
A) Metered service
B) Broad network access
C) Rapid elasticity
D) On-demand self-service Answer- A
Which cloud deployment model allows customers to take advantage of service and price differences from two or more cloud vendors?
A) Public cloud
B) Hybrid cloud
C) Multi-cloud
D) Private cloud Answer- C
Which cloud consideration refers to the ability of the infrastructure to withstand disruptive events?
A) Governance
B) Availability
C) Resiliency
D) Maintenance Answer- C
Which technology is used to protect the confidentiality of data from on-path attacks?
A) Bring your own device (BYOD)
B) Data loss prevention (DLP)
C) Information Rights Management (IRM)
D) Transport Layer Security (TLS) Answer- D
Which technology allows cryptographic secrets to be held in a secure way so that they can be recovered by parties who have authorization?
A) Revocation
B) Key distribution
C) Key escrow
D) Lifetime Answer- C
Which safety control acts as a virtual firewall in cloud environments?
A) Traffic inspection
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller EvaTee. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $35.99. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
77016 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now