Which governance domain focuses on proper and adequate incident detection, response, notification, and remediation?
Correct Answer: E
Question 107
In preparing for cloud incident response, why is updating forensics tools for virtual machines (VMs) and containers critical?
Correct Answer: C
Updating forensics tools for virtual machines (VMs) and containers is critical because cloud environments can differ significantly from traditional on-premises environments. As cloud technologies evolve, it is important to ensure that forensic tools are compatible with the latest cloud infrastructure, such as VMs, containers, and serverless architectures. This ensures that the tools can effectively collect, analyze, and preserve evidence in the event of a security incident, allowing for accurate and efficient incident analysis. Complying with cloud service level agreements (SLAs)) is not the primary reason for updating forensics tools, although some SLAs may require certain levels of incident response capabilities. Streamlining communication with cloud service providers and customers) is important, but the primary concern is the ability to analyze incidents, not just communication. Increasing the speed of incident response team deployments) is a consideration, but ensuring the tools are up to date and compatible is the main priority for effective incident analysis.
Question 108
Which cloud service model requires the customer to manage the operating system and applications?
Correct Answer: C
In the Infrastructure as a Service (IaaS) model, the cloud provider delivers the basic infrastructure components such as virtual machines, storage, and networking resources. However, the customer is responsible for managing the operating system, applications, and any software configurations that run on the infrastructure. This gives the customer more control over the environment while still benefiting from the cloud provider's hardware and scalability. The provider manages the operating system, runtime, and infrastructure, and the customer is only responsible for managing the applications. NaaS focuses on network services, not the management of operating systems and applications. The provider manages everything, including the operating system and applications, and the customer simply uses the software.
Question 109
Which approach is commonly used by organizations to manage identities in the cloud due to the complexity of scaling across providers?
Correct Answer: C
Managing identities across multiple cloud providers is complex due to the need for scalability, interoperability, and consistent access control. Thefederationapproach is commonly used to address this challenge. Identity federation allows organizations to use a single set of credentials across different cloud providers by leveraging standards such as SAML, OAuth, or OpenID Connect. This enables seamless authentication and authorization without requiring separate identity management systems for each provider. From theCCSK v5.0 Study Guide, Domain 6 (Identity, Entitlement, and Access Management), Section 6.3: "Identity federation is a critical approach for managing identities in cloud environments, especially when scaling across multiple providers. Federation allows organizations to use a trusted identity provider (IdP) to authenticate users, enabling single sign-on (SSO) and consistent access control across disparate cloud services." Option C (Federation) is the correct answer. * Option A (Decentralization) is incorrect because decentralizing identity management increases complexity and reduces consistency across providers. * Option B (Centralization) is incorrect because, while centralized identity management may be used within a single organization, it does not scale effectively across multiple cloud providers without federation. * Option D (Outsourcing) is incorrect because outsourcing identity management does not inherently address the scalability and interoperability challenges of cloud environments. References: CCSK v5.0 Study Guide, Domain 6, Section 6.3: Identity Federation. CSA Security Guidance for Critical Areas of Focus in Cloud Computing v4.0, Domain 11.
Question 110
Who is responsible for the security of the physical infrastructure and virtualization platform?
