Certificate of Cloud Security Knowledge v5

Here you have the best CSA CCSKv5 practice exam questions

Question 1 of 187

Which practice best helps mitigate security risks by minimizing root/core access and restricting deployment creation?

Enforcing the principle of ‘trust and eventually verify on demand’

Disabling multi-factor authentication for staff and focusing on decision makers’ accounts

Deploying applications with full access and applying restrictions based on the need to object

Enforcing the principle of least privilege

Correct Answer: D

Question 2 of 187

What is one primary operational challenge associated with using cloud-agnostic container strategies?

Limiting deployment to a single cloud service

Establishing identity and access management protocols

Reducing the amount of cloud storage used

Management plane compatibility and consistent controls

Correct Answer: D

Question 3 of 187

How can the use of third-party libraries introduce supply chain risks in software development?

They are usually open source and do not require vetting

They might contain vulnerabilities that can be exploited

They fail to integrate properly with existing continuous integration pipelines

They might increase the overall complexity of the codebase

Correct Answer: B

Question 4 of 187

Which aspect is most important for effective cloud governance?

Establishing a governance hierarchy

Implementing best-practice cloud security control objectives

Formalizing cloud security policies

Negotiating SLAs with cloud providers

Correct Answer: B

Question 5 of 187

What are the essential characteristics of cloud computing as defined by the NIST model?

Resource sharing, automated recovery, universal connectivity, distributed costs, fair pricing

High availability, geographical distribution, scaled tenancy, continuous resourcing, market pricing

On-demand self-service, broad network access, resource pooling, rapid elasticity, measured service

Equal access to dedicated hosting, isolated networks, scalability resources, and automated continuous provisioning

Correct Answer: C