CCSP Free Practice Test

- (Exam Topic 2)
From a security perspective, which of the following is a major concern when evaluating possible BCDR solutions?

1. A. Access provisioning
2. B. Auditing
3. C. Jurisdictions
4. D. Authorization

Correct Answer: C
When a security professional is considering cloud solutions for BCDR, a top concern is the jurisdiction where the cloud systems are hosted. If the jurisdiction is different from where the production systems are hosted, they may be subjected to different regulations and controls, which would make a seamless BCDR solution far more difficult.

- (Exam Topic 2)
Which of the following is NOT part of a retention policy?

1. A. Format
2. B. Costs
3. C. Accessibility
4. D. Duration

Correct Answer: B
The data retention policy covers the duration, format, technologies, protection, and accessibility of archives, but does not address the specific costs of its implementation and maintenance.

- (Exam Topic 4)
When using an IaaS solution, what is a key benefit provided to the customer?

1. A. Metered and priced on the basis of units consumed
2. B. Increased energy and cooling system efficiencies
3. C. Transferred cost of ownership
4. D. The ability to scale up infrastructure services based on projected usage

Correct Answer: A
IaaS has a number of key benefits for organizations, which include but are not limited to these: -- - Usage is metered and priced on the basis of units (or instances) consumed. This can also be billed back to specific departments or functions.
- It has an ability to scale up and down infrastructure services based on actual usage. This is particularly useful and beneficial where there are significant spikes and dips within the usage curve for infrastructure.
- It has a reduced cost of ownership. There is no need to buy assets for everyday use, no loss of asset value over time, and reduced costs of maintenance and support.
- It has a reduced energy and cooling costs along with “green IT” environment effect with optimum use of IT resources and systems.

- (Exam Topic 2)
Which regulatory system pertains to the protection of healthcare data?

1. A. HIPAA
2. B. HAS
3. C. HITECH
4. D. HFCA

Correct Answer: A
The Health Insurance Portability and Accountability Act (HIPAA) sets stringent requirements in the United
States for the protection of healthcare records.

- (Exam Topic 3)
DNSSEC was designed to add a layer of security to the DNS protocol. Which type of attack was the DNSSEC extension designed to mitigate?

1. A. Account hijacking
2. B. Snooping
3. C. Spoofing
4. D. Data exposure

Correct Answer: C
DNSSEC is an extension to the regular DNS protocol that utilizes digital signing of DNS query results, which can be verified to come from an authoritative source. This verification mitigates the ability for a rogue DNS server to be used to spoof query results and to direct users to malicious sites. DNSSEC provides for the verification of the integrity of DNS queries. It does not provide any protection from snooping or data exposure. Although it may help lessen account hijacking by preventing users from being directed to rogue sites, it cannot by itself eliminate the possibility.