Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CCSP - Cloud security > Chapter 6 - Roles And Responsibilities > Flashcards

Chapter 6 - Roles And Responsibilities Flashcards

1
Q

What does the cop had to consider if he builds a facility in a rural setting?

A

Ensure creating robust, redundant utility connections for connectivity and power services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What needs to be considered when building a dc?

A

Proximity to customer, attractiveness for personnel, natural disasters

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Cool ensuring secure hardware components

A

Need to consider BIOs Installation (Firmware flashed into professor) , proper installation of virtualization tools and TSM (treuester platform standard = dictates how processor can be used for cryptographic functions)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does provider has to consider regarding physical plant

A

Secure hardware components, hardware configuration, hardware logging, computer contingent composition (Muli tenancy vs exclusive host), Renoir Admin access

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Cp responsibility secure logical framework elements

A

Secure virtual os installation ( including virtualization management tools), secure configuration for virtualize elements

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Cp responsibilities secure networking

A

Firewalls, ids/ips (Monitor Network), honeypots, vulnerability assessment (only known are detected, attacks on unkown = zero-day attacks), communication protection (data in transit via encryption, vpn, strong authentication)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the shared responsibilities by service type?

A

IaaS: Secure infrastructure
PaaS: Platform Security (cc Updates and patches Apps and cp must make sure that app and Security functions properly afterwards)
SaaS: Application security (cp for app and cc for access)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Shared responsibilities is, middleware our applications

A

Establish hardening by implementing a Baseline configuration to have the same setup on all machines

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How can shared responsibilities for data access take place?

A

Cc does it himself (logs onto machine)
Cp takes this task and only verifies with cc
Casb takes over the task, verifies with cc and logs onto machine

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Who created the SSAE of which SOC ist part of?

A

AICPA (American Institute of certified public accountants)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What Are the the soc report categories?

A

SOC 1: financial (type one and two)
SOC 2: organization controls
SOC 2 type 1: how control is designed in the organization
SOC 2 type 2: how controls are implemented and maintained (most useful!!)
SOC 3: Seal of approval

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CCSP - Cloud security (8 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions