312-40試験無料問題集（150題）「EC-COUNCIL EC-Council Certified Cloud Security Engineer (CCSE) 認定」

出題：1

Tom Holland works as a cloud security engineer in an IT company located in Lansing, Michigan. His organization has adopted cloud-based services wherein user access, application, and data security are the responsibilities of the organization, and the OS, hypervisor, physical, infrastructure, and network security are the responsibilities of the cloud service provider. Based on the aforementioned cloud security shared responsibilities, which of the following cloud computing service models is enforced in Tom's organization?

A. Infrastructure-as-a-Service

B. Platform-as-a-Service

C. On-Premises

D. Software-as-a-Service

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

The cloud administrator John was assigned a task to create a different subscription for each division of his organization. He has to ensure all the subscriptions are linked to a single Azure AD tenant and each subscription has identical role assignments. Which Azure service will he make use of?

A. Azure AD Identity Protection

B. Azure AD Self-Service Password Reset

C. Azure AD Privileged Identity Management

D. Azure AD Multi-Factor Authentication

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

The tech giant TSC uses cloud for its operations. As a cloud user, it should implement an effective risk management lifecycle to measure and monitor high and critical risks regularly. Additionally, TSC should define what exactly should be measured and the acceptable variance to ensure timely mitigated risks. In this case, which of the following can be used as a tool for cloud risk management?

A. Information System Audit and Control Association

B. Cloud Security Alliance

C. CSA CCM Framework

D. Committee of Sponsoring Organizations

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

Two cloud security engineers, Lin and Messy, observed unexpected changes such as slower response time in the behavior of the Azure storage services used by applications. They need to study the tables, queues, and blob logs and identify the root cause of the slow response to remediate the issue. How can both Lin and Messy ensure the operational security of Azure operational?

A. Using Azure Storage Analytics

B. Using Azure Automation

C. Using Azure Active Directory

D. Using Azure Monitor

正解：A 解答を投票する

出題：5

SecureSoft Solutions Pvt. Ltd. is an IT company that develops mobile-based applications. Owing to the secure and cost-effective cloud-based services provided by Google, the organization migrated its applications and data from on premises environment to Google cloud. Sienna Miller, a cloud security engineer, selected the Coldlinc Storage class for storing data in the Google cloud storage bucket. What is the minimum storage duration for Coldline Storage?

A. 60 days

B. 90 days

C. 50 days

D. 120 days

正解：B 解答を投票する

出題：6

An Azure organization wants to enforce its on-premises AD security and password policies to filter brute-force attacks. Instead of using legacy authentication, the users should sign in to on-premises and cloud-based applications using the same passwords in Azure AD. Which Azure AD feature can enable users to access Azure resources?

A. Azure AD Pass Through Authentication

B. Azure Policy

C. Azure Automation

D. Azure AD Connect

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Sandra Oliver has been working as a cloud security engineer in an MNC. Her organization adopted the Microsoft Azure cloud environment owing to its on-demand scalability, robust security, and high availability features. Sandra's team leader assigned her the task to increase the availability of organizational applications; therefore, Sandra is looking for a solution that can be utilized for distributing the traffic to backend Azure virtual machines based on the attributes of the HTTP request received from clients. Which of the following Azure services fulfills Sarah's requirements?

A. Azure Sentinel

B. Azure Application Gateway

C. Azure ExpressRoute

D. Azure Front Door

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

Global CloudEnv is a cloud service provider that provides various cloud-based services to cloud consumers. The cloud service provider adheres to the framework that can be used as a tool to systematically assess cloud implementation by providing guidance on the security controls that should be implemented by specific actors within the cloud supply chain. It is used as the standard to assess the security posture of organizations on the Security, Trust, Assurance, and Risk (STAR) registry. Based on the given information, which of the following cybersecurity control frameworks does Global CloudEnv adhere to?

A. CSA CCM

B. ITU-T X.1601

C. CSA CAIQ

D. CDMI

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

An organization is developing a new AWS multitier web application with complex queries and table joins.
However, because the organization is small with limited staff, it requires high availability. Which of the following Amazon services is suitable for the requirements of the organization?

A. Amazon HSM

B. Amazon DynamoDB

C. Amazon Snowball

D. Amazon Glacier

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

FinTech Inc. is an IT company that utilizes a cloud platform to run its IT infrastructure. Employees belonging to various departments do not implement the rules and regulations framed by the IT department, which leads to fragmented control and breaches that affect the efficiency of cloud services. How can the organization effectively overcome shadow IT and unwarranted usage of cloud resources in this scenario?

A. By implementing cloud governance

B. By implementing corporate compliance

C. By implementing cloud risk management

D. By implementing regulatory compliance

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

312-40試験無料問題集「EC-COUNCIL EC-Council Certified Cloud Security Engineer (CCSE) 認定」