Cloud Security Assessment test - Penetration Tester questions

Question 1

Which of the following best describes the concept of 'shared responsibility' in cloud security?

Cloud providers are responsible for securing cloud storage, while customers secure virtual machines Customers are responsible for securing data in transit, while cloud providers secure data at rest Cloud providers and customers both have responsibilities for securing cloud resources Cloud providers are responsible for securing the physical data center, while customers secure virtual resources Cloud providers are solely responsible for securing cloud resources Customers are solely responsible for securing cloud resources

Correct Answer: Cloud providers and customers both have responsibilities for securing cloud resources

Cloud providers and customers both have responsibilities for securing cloud resources, with the specific responsibilities depending on the service model being used. For example, in the Infrastructure as a Service (IaaS) model, customers are responsible for securing their virtual machines, while the cloud provider is responsible for securing the underlying physical infrastructure.

Question 2

What is the purpose of a cloud access security broker (CASB)?

To hide cloud applications from users To restrict access to cloud applications To provide visibility and control over cloud applications To encrypt data in cloud applications To improve the performance of cloud applications To back up data in cloud applications

Correct Answer: To provide visibility and control over cloud applications

CASBs are used to provide security policies and visibility over cloud applications, and to ensure compliance with regulations. It is not used to hide applications or restrict access to them, or to improve performance, encrypt data or back up data in cloud applications.

Question 3

What is a data lake in cloud computing?

A data lake is a type of cloud-based storage used to store only structured data. A data lake is a centralized repository that allows you to store all your structured and unstructured data at any scale. A data lake is a protocol used to secure data in transit between cloud services. A data lake is a specialized data center that provides data-related services to customers on a subscription basis. A data lake is a software tool used in cloud environments for managing data communication. A data lake is a term used to describe the process of moving data from one cloud service to another.

Correct Answer: A data lake is a centralized repository that allows you to store all your structured and unstructured data at any scale.

A data lake is a centralized repository that allows you to store all your structured and unstructured data at any scale. Unlike traditional data storage solutions that are built for specific types of data, a data lake is designed to be flexible and scalable so that you can store and analyze all types of data in one place.

Cloud Security Assessment

Penetration Tester - Cloud Security Assessment Example Questions

Question 1

Question 2

Question 3

🎓 Unlock Premium Access