What is the best way to ensure that all data has been removed from a public cloud environment including all media such as back-up tapes?

• A.Keep the keys stored on the client side so that they are secure and so that the users have the ability to delete their own data.
• B.Both B and D.
• C.Allowing the cloud provider to manage your keys so that they have the ability to access and delete the data from the main and back-up storage.
• D.Maintaining customer managed key management and revoking ordeleting keys from the key management system to prevent the data from being accessed again.
• E.Practice Integration of Duties (IOD) so that everyone is able to delete the encrypted data.

Comment: *

Name: *

Email: *

Verification: *

Dynamic Application Security Testing (DAST) might be limited or require pre-testing permission from the provider.

• A.False
• B.True

Comment: *

Name: *

Email: *

Verification: *

All cloud services utilize virtualization technologies.

• A.True
• B.False

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST way for a client to enforce a policy violation committed by a cloud service provider (CSP)?

• A.The violation is agreed to verbally by the CSP.
• B.Violations will be automatically enforced so no action is needed.
• C.Nothing can be done to enforce violations as this is a cloud service.
• D.The violation is agreed upon and documented.

Comment: *

Name: *

Email: *

Verification: *

Which term is used to describe the use of tools to selectively degrade portions of the cloud to continuously test business continuity?

• A.Organized Downtime
• B.Resiliency Planning
• C.Expected Engineering
• D.PlannedOutages
• E.Chaos Engineering

Comment: *

Name: *

Email: *

Verification: *