CCSP Free Practice Test

- (Exam Topic 1)
Which of the following is the optimal humidity level for a data center, per the guidelines established by the America Society of Heating, Refrigeration, and Air Conditioning Engineers (ASHRAE)?

1. A. 30-50 percent relative humidity
2. B. 50-75 percent relative humidity
3. C. 20-40 percent relative humidity
4. D. 40-60 percent relative humidity

Correct Answer: D
The guidelines from ASHRAE establish 40-60 percent relative humidity as optimal for a data center.

- (Exam Topic 2)
Which of the following features is a main benefit of PaaS over IaaS?

1. A. Location independence
2. B. High-availability
3. C. Physical security requirements
4. D. Auto-scaling

Correct Answer: D
With PaaS providing a fully configured and managed framework, auto-scaling can be implemented to programmatically adjust resources based on the current demands of the environment.

- (Exam Topic 4)
What are third-party providers of IAM functions for the cloud environment?

1. A. AESs
2. B. SIEMs
3. C. DLPs
4. D. CASBs

Correct Answer: D
Data loss, leak prevention, and protection is a family of tools used to reduce the possibility of unauthorized disclosure of sensitive information. SIEMs are tools used to collate and manage log data. AES is an encryption standard.

- (Exam Topic 4)
Which type of testing uses the same strategies and toolsets that hackers would use?

1. A. Static
2. B. Malicious
3. C. Penetration
4. D. Dynamic

Correct Answer: C
Penetration testing involves using the same strategies and toolsets that hackers would use against a system to discovery potential vulnerabilities. Although the term malicious captures much of the intent of penetration testing from the perspective of an attacker, it is not the best answer. Static and dynamic are two types of system testing--where static is done offline and with knowledge of the system, and dynamic is done on a live system without any previous knowledge is associated--but neither describes the type of testing being asked for in the question.

- (Exam Topic 4)
When an organization is considering the use of cloud services for BCDR planning and solutions, which of the following cloud concepts would be the most important?

1. A. Reversibility
2. B. Elasticity
3. C. Interoperability
4. D. Portability

Correct Answer: D
Portability is the ability for a service or system to easily move among different cloud providers. This is essential for using a cloud solution for BCDR because vendor lock-in would inhibit easily moving and setting up services in the event of a disaster, or it would necessitate a large number of configuration or component changes to implement. Interoperability, or the ability to reuse components for other services or systems, would not be an important factor for BCDR. Reversibility, or the ability to remove all data quickly and completely from a cloud environment, would be important at the end of a disaster, but would not be important during setup and deployment. Elasticity, or the ability to resize resources to meet current demand, would be very beneficial to a BCDR situation, but not as vital as portability.