CCSP Free Practice Test

- (Exam Topic 3)
Different certifications and standards take different approaches to data center design and operations. Although many traditional approaches use a tiered methodology, which of the following utilizes a macro-level approach to data center design?

1. A. IDCA
2. B. BICSI
3. C. Uptime Institute
4. D. NFPA

Correct Answer: A
The Infinity Paradigm of the International Data Center Authority (IDCA) takes a macro-level approach to data center design. The IDCA does not use a specific, focused approach on specific components to achieve tier status. Building Industry Consulting Services International (BICSI) issues certifications for data center cabling. The National Fire Protection Association (NFPA) publishes a broad range of fire safety and design standards for many different types of facilities. The Uptime Institute publishes the most widely known and used standard for data center topologies and tiers.

- (Exam Topic 4)
What concept and operational process must be spelled out clearly, as far as roles and responsibilities go, between the cloud provider and cloud customer for the mitigation of any problems or security events?

1. A. Incident response
2. B. Problem management
3. C. Change management
4. D. Conflict response

Correct Answer: A
Incident response is the process through which security or operational issues are handled, including and coordination with and communication to the appropriate stakeholders. None of the other terms provided is the correct response.

- (Exam Topic 4)
DLP can be combined with what other security technology to enhance data controls?

1. A. SIEM
2. B. Hypervisors
3. C. DRM
4. D. Kerberos

Correct Answer: C
DLP can be combined with DRM to protect intellectual property; both are designed to deal with data that falls into special categories. SIEMs are used for monitoring event logs, not live data movement. Kerberos is an authentication mechanism. Hypervisors are used for virtualization.

- (Exam Topic 4)
Which aspect of cloud computing serves as the biggest challenge to using DLP to protect data at rest?

1. A. Portability
2. B. Resource pooling
3. C. Interoperability
4. D. Reversibility

Correct Answer: B
Resource pooling serves as the biggest challenge to using DLP solutions to protect data at rest because data is spread across large systems, which are also shared by many different clients. With the data always moving and being distributed, additional challenges for protection are created versus a physical and isolated storage system. Portability is the ability to easily move between different cloud providers, and interoperability is focused on the ability to reuse components or services. Reversibility pertains to the ability of a cloud customer to easily and completely remove their data and services from a cloud provider.

- (Exam Topic 2)
Which of the following is the sole responsibility of the cloud customer, regardless of which cloud model is used?

1. A. Infrastructure
2. B. Platform
3. C. Application
4. D. Data

Correct Answer: D
Regardless of which cloud-hosting model is used, the cloud customer always has sole responsibility for the data and its security.