> > Cloud Security MCQs > Basic Cloud Security MCQs

Basic Cloud Security MCQ

1. When using ssl, the public key is found in a _______.

Digital certificate

Smartfilter

Accelerator

Answer

Correct Answer: Digital certificate

Note: This Question is unanswered, help us to find answer for this one

2. Compared to in-house hosting, cloud-based hosting ________.

Provides better visibility of security and disaster preparedness capabilities

Minimizes the risk of investing in technology that will soon become obsolete

Provides greater control over the location of data

Requires a significant amount of capital

Answer

Correct Answer: Minimizes the risk of investing in technology that will soon become obsolete

Note: This Question is unanswered, help us to find answer for this one

3. One downside to cloud storage is that ________ is needed to access your files.

Magnetic storage

Internet access

Statistical analysis of aircraft wing flutter

Optical processors

Answer

Correct Answer: Internet access

Note: This Question is unanswered, help us to find answer for this one

4. A ________ is a cloud that is owned and operated by an organization for its own benefit.

Private cloud

Virtual private network

Wide area network

Answer

Correct Answer: Private cloud

Note: This Question is unanswered, help us to find answer for this one

5. Which component of the Symantec Control Compliance Suite (CCS) simplifies the evaluation of procedural controls by enabling an organization to automate, publish, and analyze results from web-based surveys?

CCS Policy Manager

CCS Standards Manager

CCS Response Assessment Manager

CCS External Data Interface Manager

Answer

Correct Answer: CCS Standards Manager

Note: This Question is unanswered, help us to find answer for this one

6. A company is hosting its email infrastructure in the cloud. The company is unable to enjoy the benefit of cloud deployment because its email servers process excessive spam emails. The company needs a solution that can block spam and malware contained in email messages before it reaches the email servers. Which solution resolves this issue?

Symantec Web Gateway

Symantec Messaging Gateway

Symantec Network Prevent for Email

Answer

Correct Answer: Symantec Messaging Gateway

Note: This Question is unanswered, help us to find answer for this one

7. How does Symantec Endpoint Protection (SEP) maximize VM density and performance without impacting security?

SEP analyzes virtual system configurations to identify vulnerabilities.

SEP reduces the spread of malware by hardening VMware vCenter.

SEP checks that offline VMware machines are safe before bringing them online.

SEP identifies malicious attacks to ESX/ESXi hypervisors without using signatures.

Answer

Correct Answer: SEP reduces the spread of malware by hardening VMware vCenter.

Note: This Question is unanswered, help us to find answer for this one

8. An enterprise is in the process of moving application servers to a cloud-based IaaS platform. Which technology should an IT professional use to assess the risk of the IT assets in a business context?

Symantec Validation and Identity Protection

Symantec Critical Systems Protection

Symantec Control Compliance Suite

Symantec Data Loss Prevention

Answer

Correct Answer: Symantec Control Compliance Suite

Note: This Question is unanswered, help us to find answer for this one

9. What can a hosted Symantec Data Loss Prevention solution do to protect confidential data in an outgoing email?

Modify the email body to redirect to a quarantine location

Use a Flex Response plug-in to modify the email header

Add a header to an email to route to an encryption gateway

Modify the email attachment content to remove confidential information

Answer

Correct Answer: Add a header to an email to route to an encryption gateway

Note: This Question is unanswered, help us to find answer for this one

10. An IT security professional at a large US-based manufacturing company has decided to deploy and manage a host intrusion detection solution to assist with their migration to a cloud environment. Which cloud environment will benefit from this solution?

Hybrid SaaS

Multi-tenant IaaS

Multi-tenant PaaS

Multi-tenant SaaS

Answer

Correct Answer: Multi-tenant IaaS

Note: This Question is unanswered, help us to find answer for this one

11. A cloud service provider administrator has discovered that someone is attempting to determine which servers and operating systems are running on a tenant's network by using network mapping. How is this risk categorized?

Legal

Technical

Non-cloud specific

Policy and organizational

Answer

Correct Answer: Technical

Note: This Question is unanswered, help us to find answer for this one

12. Which action addresses a risk inherent to the public cloud model?

Harden applications sufficiently for multi-tenant environments

Revert a public cloud to a private cloud during an emergency

Apply anti-spam measures on the endpoint accessing the cloud

Activate de duplication on the cloud-based storage

Answer

Correct Answer: Harden applications sufficiently for multi-tenant environments

Note: This Question is unanswered, help us to find answer for this one

13. An individual has been able to obtain "Virtual Machine User" level access on a VMware host.Which possible issue could this cause?

Broken fault tolerance

Ineffective resource pooling

Virtual machines being shut down

Virtual machines removed from data store

Answer

Correct Answer: Virtual machines being shut down

Note: This Question is unanswered, help us to find answer for this one

14. What is the correct order used by Symantec Messaging Gateway for scanning email messages?

Message is scanned for viruses > message is scanned for spam > message attachments are scanned for policy violations

Message is scanned for viruses > message is scanned for content violations and data loss > message is scanned for spam

Message is scanned for viruses > message is scanned for spam > message is scanned for content violations and data loss

Message is scanned for spam > message is scanned for viruses > message is scanned for content violations and data loss

Answer

Correct Answer: Message is scanned for spam > message is scanned for viruses > message is scanned for content violations and data loss

Note: This Question is unanswered, help us to find answer for this one

15. A CSO is concerned to learn that data is being intercepted while moving data between the cloud and corporate users. What should an IT professional do to mitigate this issue?

Implement data encryption

Implement firewall policies

Implement data loss prevention

Implement an automated patch management process

Answer

Correct Answer: Implement data encryption

Note: This Question is unanswered, help us to find answer for this one

16. A company is planning a migration of an application to public IaaS. What is a valid objection related to data security in this scenario?

Security risks introduced by a multi-tenant cloud

Loss of administrative control of the application in the cloud

Lack of operational resiliency in the cloud

Inability to enforce strong authentication in the cloud

Answer

Correct Answer: Security risks introduced by a multi-tenant cloud

Note: This Question is unanswered, help us to find answer for this one

17. Which scenario identifies assets eligible for PaaS cloud migration?

Proprietary beta release product application software and its supporting kernel-level programming code

The development team application servers that require constant physical configuration changes the development team? application servers that require constant physical configuration changes

Layer 3 switches that are being used to segregate the various business units and separate the production and testing environments

Database servers that are being used by the QA team to test load handling

Answer

Correct Answer: Database servers that are being used by the QA team to test load handling

Note: This Question is unanswered, help us to find answer for this one

18. A company has decided to implement "cloud bursting" to allow their production environment to scale to any size by utilizing on-demand connections to a public cloud IaaS infrastructure. Which solution allows the IT department to minimize security risks by treating the IaaS environment as a logical extension of their internal network?

Hosted SaaS connection between the datacenter and IaaS provider

Virtual DLP connection between the datacenter and the IaaS provider

IPSEC VPN connection between the datacenter and the IaaS provider

On-demand PGP connection between the datacenter and the IaaS provider

Answer

Correct Answer: Virtual DLP connection between the datacenter and the IaaS provider

Note: This Question is unanswered, help us to find answer for this one

19. Which security requirement is difficult for a SaaS provider to meet?

Ensuring trusted SSL communications

Complying with company-specific IT standards

Protecting the integrity of stored information

Securing web page content from modification

Answer

Correct Answer: Ensuring trusted SSL communications

Note: This Question is unanswered, help us to find answer for this one

Cloud Security MCQs | Topic-wise

MCQ on Basic Cloud Security

General Cloud Security MCQs