Certified Cloud Security Engineer

Here you have the best ECCouncil 312-40 practice exam questions

You have 11 total questions to study from
Each page has 5 questions, making a total of 3 pages
You can navigate through the pages using the buttons at the bottom
This questions were last updated on October 18, 2025
This site is not affiliated with or endorsed by ECCouncil.

Question 1 of 11

Lexie Roth works as a cloud security engineer in an IT company located in Boston, Massachusetts. Her organization generates a huge amount of data. To increase the storage size, speed, and fault tolerance, Lexie would like to configure and create a RAID. Therefore, she created a RAID on Windows Server 2016, which includes block-level striping with a distributed parity. The parity information is distributed among all drives, except one. The data chunks in the RAID are larger than the regular I/O size, but they can be re-sized. To prevent data loss after a drive fails, data are calculated from the distributed parity. The RAID configured by Lexie requires at least three disks, but for robust performance, Lexie used seven disks. Based on the given information, which of the following RAID was configured and created by Lexie?

RAID 3

RAID 5

RAID 1

RAID 0

Correct Answer: B

Question 2 of 11

Tom Holland works as a cloud security engineer in an IT company located in Lansing, Michigan. His organization has adopted cloud-based services wherein user access, application, and data security are the responsibilities of the organization, and the OS, hypervisor, physical, infrastructure, and network security are the responsibilities of the cloud service provider. Based on the aforementioned cloud security shared responsibilities, which of the following cloud computing service models is enforced in Tom’s organization?

Software-as-a-Service

On-Premises

Infrastructure-as-a-Service

Platform-as-a-Service

Correct Answer: D

Question 3 of 11

A security incident has occurred within an organization’s AWS environment. A cloud forensic investigation procedure is initiated for the acquisition of forensic evidence from the compromised EC2 instances. However, it is essential to abide by the data privacy laws while provisioning any forensic instance and sending it for analysis. What can the organization do initially to avoid the legal implications of moving data between two AWS regions for analysis?

Create evidence volume from the snapshot

Provision and launch a forensic workstation

Attach the evidence volume to the forensic workstation

Mount the evidence volume on the forensic workstation

Correct Answer: A

Question 4 of 11

Ray Nicholson works as a senior cloud security engineer in TerraCloud Sec Pvt. Ltd. His organization deployed all applications in a cloud environment in various virtual machines. Using IDS, Ray identified that an attacker compromised a particular VM. He would like to limit the scope of the incident and protect other resources in the cloud. If Ray turns off the VM, what will happen?

The data required to be investigated will be stored in the VHD

The data required to be investigated will be saved

The data required to be investigated will be recovered

The data required to be investigated will be lost

Correct Answer: A

Question 5 of 11

SecureSoft Solutions Pvt. Ltd. is an IT company that develops mobile-based applications. Owing to the secure and cost-effective cloud-based services provided by Google, the organization migrated its applications and data from on-premises environment to Google cloud. Sienna Miller, a cloud security engineer, selected the Coldline Storage class for storing data in the Google cloud storage bucket. What is the minimum storage duration for Coldline Storage?

60 days

120 days

30 days

90 days

Correct Answer: A