Cloud Operations and Compliance

Question 1

What is a tightly coupled cluster?

Answer 1

focused on primary storage. The data is divided up and used in disk-to-disk back up systems.

Question 2

What is a loosely coupled cluster?

Answer 2

It offers cost-effective building blocks that can start small and grow as applications demand.

Question 3

What should storage clusters be designed to do?

Answer 3

meet the required service levels
provide the ability to separate customer data in multitenant hosting environments
securely store and protect data through the use of availability, integrity, and confidentiality mechanisms, such as encryptions, hashing, masking, and multipathing.

Question 4

What is a KVM console?

Answer 4

it is an application running in the browser window for remote maintenance of a Cloud Server or virtual server cloud.

Question 5

What is CIMC?

Answer 5

Cisco Integrated Management Controller is used to manage and monitor the C-Series Rack servers.

It provides options like WebGUI, CLI, and IPMI for managing and monitoring tasks.

Question 6

What are VLANs?

Answer 6

it is a set of workstations within a LAN that can communicate with each other as though they were on a single, isolated LAN.

Let’s you segment a physical network so that two machines in the network can’t transmit packets back and forth.

Question 7

What is Transport Layer Security(TLS)?

Answer 7

is a cryptographic protocol designed to provide communication security over a network.

Question 8

What are the two layers of TLS?

Answer 8

TLS record protocol provides connection security and ensures that the connection is private and reliable.

TLS handshake protocol allows the client and server to authenticate each other and negotiate an encryption algorithm and cryptographic keys before date is sent and received.

Question 9

What is DNS

Answer 9

is a distributed database that contains mappings of the DNS domain names to various types of data, such as IP addresses.

Question 10

What is DNSSEC?

Answer 10

a suite of extensions that adds security to the domain name system protocol by enabling DNS responses to be validated.

Question 11

What are the THREATs to the DNS Infrastructure?

Answer 11

Footprinting, DoS Attacks, Data modification, Redirection, and Spoofing.

Question 12

What is DNS footprinting?

Answer 12

collecting information about DNS zone data, which includes information about key hosts in the network

Question 13

What is active footprinting?

Answer 13

the process of using tools and techniques for performing ping sweep and traceroute commands to gather information on a target.

Question 14

What is a firewall?

Answer 14

a software or hardware-based network security system that controls the incoming and outgoing network traffic based on an applied rule set.

Question 15

What is an IDS?

Answer 15

An intrusion detection device is passive watching of data transverse the network from monitoring ports, comparing traffic to configured rules, and setting off an alarm if it detects anything suspicious.

Question 16

What is NIDS?

Answer 16

Network Intrusion Detections Systems are placed at a strategic point within the network to monitor traffic to and from all devices on the network.

Question 17

What are IPSs?

Answer 17

Intrusion Prevention Systems sit inline with traffic flow on a network, actively shutting down attempted attacks as they are sent over the wire.

Question 18

What are Honeypots?

Answer 18

they are used to detect, deflect, or counteract attempts at unauthorized use of information systems.

Question 19

What is patch management?

Answer 19

the process of identifying, acquiring, installing, and verifying patches for products and systems.

Question 20

What should patches address?

Answer 20

Vulnerability detection and evaluation
Subscription mechanism to vendor patch
Severity assessment of the patch by the receiving enterprise using that software
Applicability assessment of the patch on target systems
Opening of tracking records
Customer notification of applicable patches
Change management
Successful patch application verification
Issue and risk management
Closure of tracking record

Question 21

What are some Remote Access Threats?

Answer 21

Lack of Physical Security Controls
Unsecured Networks
Infected endpoints accessing the internal network
External access to internal resources

Question 22

How do you control Remote Access Threats?

Answer 22

Tunneling via a VPN
Remote desktop protocol, which allows for desktop access to remote systems
Access via a secure terminal
Deployment of a DMZ

Question 23

How should you monitor cloud environments?

Answer 23

Network: Excessive dropped packets.
Disk: Full Disk or slow reads and writes to the disks.
Memory: Excessive memory usage or full utilization of available memory allocation.
CPU: Excessive CPU utilization.

Question 24

What is shadow IT?

Answer 24

is often defined as money spent on technology to acquire services without the IT department’s dollars or knowledge.

Question 25

What is auditing?

Answer 25

a systematic process of obtaining and evaluating evidence based on assertions about economic actions and events and establishing criteria and communicating the results to interested users.

Question 26

What is internal auditing?

Answer 26

is an independent appraisal function established within an organization to examine and evaluate its activities as a service to the organization.

Question 27

What is an IT audit?

Answer 27

Provide audit services where processes or data, or both, are embedded in technologies.

Question 28

What are fraud audits?

Answer 28

Provide investigation services where anomalies are suspected, to develop evidence to support or deny fraudulent activities.

Question 29

What is an external audit?

Answer 29

the objective is that in all material respects, financial statements are a fair representation of the organization’s transactions and account balances.

Question 30

What is the Security and Exchange Commission’s role?

Answer 30

oversees securities exchanges, securities brokers and dealers, investment advisors, and mutual funds in an effort to promote fair dealing, the disclosure of important market information, and to prevent fraud.

Question 31

What is attestation?

Answer 31

the act of witnessing the signing of a formal document and then also signing it to verify it was properly signed by those bound by its contents.

Question 32

What is an audit assertion?

Answer 32

are implicit or explicit claims and representations made by management responsible for the preparation of financial statements regarding the appropriateness of the various.

Question 33

What are the phases of auditing?

Answer 33

Planning
Obtaining Evidence
Ascertaining Reliability
Communicating Results

Question 34

What are the 4 types of opinions?

Answer 34

Unqualified
Qualified
Adverse
Disclaimer

Question 35

What is an audit risk?

Answer 35

The probability that the auditor will give an inappropriate opinion on the financial statement. The statements will contain materials misstatements that the auditor fails to find

Question 36

What is an inherent risk?

Answer 36

The probability that material misstatements have occurred.

Question 37

What is a control risk?

Answer 37

The probability that the internal controls will fail to detect material misstatements.

Question 38

What is a detection risk?

Answer 38

The probability that the audit procedures will fail to detect material statements.