Which of the following are the three MAIN phases of the cloud controls matrix (CCM) mapping methodology?

• A.Initiation --> Execution --> Monitoring and Controlling
• B.Deploy --> Monitor --> Audit
• C.Plan --> Develop --> Release
• D.Preparation --> Execution --> Peer Review and Publication

Comment: *

Name: *

Email: *

Verification: *

Which of the following is an example of integrity technical impact?

• A.A DDoS attack renders the customer's cloud inaccessible for 24 hours.
• B.An administrator inadvertently click on Phish bait exposing his company to a ransomware attack.
• C.A hacker using a stolen administrator identity alerts the discount percentage in the product database.
• D.The cloud provider reports a breach of customer personal data from an unsecured server.

Comment: *

Name: *

Email: *

Verification: *

Which data security control is the LEAST likely to be assigned to an IaaSprovider?

• A.Physical destruction
• B.Encryption solutions
• C.Asset management and tracking
• D.Access controls
• E.Application logic

Comment: *

Name: *

Email: *

Verification: *

The MAIN difference between Cloud Control Matrix (CCM) and Consensus Assessment Initiative Questionnaire (CAIQ) is that:

• A.CCM has 14 domains and CAIQ has 16 domains.
• B.CCM assesses the presence of controls, whereas CAIQ assesses overall security of a service.
• C.CCM provides a controls framework, whereas CAIQ provides industry-accepted ways to document which security controls exist in IaaS, PaaS, and SaaS offerings.
• D.CCM has a set of security questions, whereas CAIQ has a set of security controls.

Comment: *

Name: *

Email: *

Verification: *

What is the advantage of using dynamic application security testing (DAST) over static application security testing (SAST) methodology?

• A.DAST can dynamically integrate with most CI/CD tools.
• B.DAST is slower but thorough.
• C.Unlike SAST, DAST is a blackbox and programming language agnostic.
• D.DAST delivers more false positives than SAST.

Comment: *

Name: *

Email: *

Verification: *