Cloud Computing
Which of the following is the newest of the CSA identified top cloud computing security threats?
Advanced persistent threat
Which one of the following is better suited to orchestration and not automation
Arranging, sequencing and coordinating a complex set of tasks
A cloud computing solution decreases the overall attack surface and thus reduces risk
False
A public cloud model offers more exclusive access to the consumer than a private cloud model
False
Cloud resource pooling is the same thing as virtualization
False
Cloud security is mostly a technology issue, and has less to do with people and processes.
False
Hardware failure continuous to be the highest rated security threat to cloud computing
False
ITIL covers more scope than COBIT, whereas COBIT goes into greater detail of "how to"
False
It is easier to overlay a security solution after a cloud solution is in production
False
Microsoft's Desired State Configuration (DSC) is an imperative configuration management tool
False
NIST certifies cloud providers based on NIST SP 500-299
False
Software as a Service (SaaS) cloud services offers more control to the customer than Infrastructure as a Service (IaaS)
False
The Chef software product started as a declarative configuration
False
The Cloud Security Alliance (CSA) is an exclusive, for-profit organization requiring a sponsored invitation to join.
False
The NIST Cloud Computing Reference Architecture prescribes a specific technical solution to be used.
False
The imperative approach to configuration management is now the more popular and established configuration management approach
False
True or False: Cloud computing requires the use of specialized custom hardware.
False
True or false: Resource pooling is the same as mulit-tenancy
False
Which of the following is not a correct CSA identified cloud computing security threat?
Hardware failure
Which type of cloud model would enable cloud scaling and bursting?
Hybrid
Which one of the following not an advantage of containerizations over virtualization
Increased time to deploy
Which NIST "as a Service" model is best suited to full customization for an organization's services?
Infrastructure as a Service (IaaS)
Why does cloud computing typically offer higher reliability?
It is typically outsourced for management to a provider that focuses on that core business area
Which of the following is NOT a NIST-defined cloud deployment model?
Multi
Which of the following is not a NIST defined essential cloud characteristic?
Multi-tenancy
Which of the following are NIST defined essential cloud characteristics?
On-Demand Self-Service, Multi-tenancy, Rapid Elasticity, Broad Network Access, Measured Service
Which of the following is not an approach to mitigating/minimizing loss of control in cloud computing?
Outsourcing all IT to public cloud service provider
Which NIST service model presents the greatest concern of vendor/proprietary locking for custom applications developed for the cloud?
Platform as a Service (Paas)
Which type of cloud computing definitely involves resources in the organization's own data center?
Private
Which model of cloud computing best mirror that current electrical utility grid?
Public
The ability of the cloud to grow to satisfy user demand is an example of which essential cloud characteristic?
Rapid Elasticity
Which NIST Conceptual Reference Model actor is responsible for overseeing operating systems, databases, networking and software applications:
SaaS Cloud Provider
The NIST Cloud Computing Conceptual Reference Model includes the following architectural components:
Service Deployment, Service Orchestration, Service Management, Security, and Privacy
Which of the following is not a benefit of DevOps?
Slower recovery from failure
At what IT infrastructural level are server costs capital expenses rather than operational?
Traditional
A microservices and containerization deployment approach facilitates deployment and scaling via modularity
True
A public cloud is more multi-tenant compared to a private cloud.
True
An imperative configuration management approach focuses on how actions are done
True
Which of the following is NOT a driver for use of cloud computing?
Use of specialized computing hardware
Which of the following is not a component of the DevOps manifesto?
Bridge the gap between developers and operations with complete documentation and fixed requirements
Which NIST defined cloud actor negotiates relationships between cloud consumers and providers?
Broker
Which of the following is NOT a NIST defined cloud computing reference model actor?
Cloud Enforcer
Which type of cloud allows an organization to share its local cloud services with its partners?
Community
A consumer has specific regulatory requirements unique to their industry. Which of the following would be best from a compliance perspective?
Community/Private Software as a Service (SaaS)
The highest level of CSA STAR Program Certification is:
Continuous Monitoring
