2024 WGU Course C838 -
Managing Cloud Security / WGU
Course C838 Managing Cloud
Security C838 OA QUESTIONS
AND ANSWERS LATEST
|AGRADE
What are the U.S. Commerce Department controls on technology
exports known as?
A EAL
B DRM
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Guidelines and tips
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
2024 WGU Course C838 - Managing Cloud Security / WGU Course C838 Managing Cloud Security C, Exams of Nursing
2024 WGU Course C838 - Managing Cloud Security / WGU Course C838 Managing Cloud Security C838 OA QUESTIONS AND ANSWERS LATEST |AGRADE
Typology: Exams
2025/2026
1 / 322
This page cannot be seen from the preview
Don't miss anything!
Related documents
Partial preview of the text
Download 2024 WGU Course C838 - Managing Cloud Security / WGU Course C838 Managing Cloud Security C and more Exams Nursing in PDF only on Docsity!
2024 WGU Course C838 -
Managing Cloud Security / WGU
Course C838 Managing Cloud
Security C838 OA QUESTIONS
AND ANSWERS LATEST
|AGRADE
What are the U.S. Commerce Department controls on technology exports known as?
A EAL B DRM
C ITAR
D EAR - ✔✔✔ANSWER-D - Export Administration Regulations
Which phase of the cloud data life cycle allows both read and process functions to be performed?
A Create B Archive C Store
D Share - ✔✔✔ANSWER-A
Which phase of the cloud data security life cycle typically occurs simultaneously with creation?
A Share B Store C Use
D Destroy - ✔✔✔ANSWER-B
Which phase of the cloud data life cycle uses content delivery networks?
A Destroy
Which methodology could cloud data storage utilize to encrypt all data associated in an infrastructure as a service (IaaS) deployment model?
A Sandbox encryption B Polymorphic encryption C Client-side encryption
D Whole-instance encryption - ✔✔✔ANSWER-D
There is a threat to a banking cloud platform service. The developer needs to provide inclusion in a relational database that is seamless and readily searchable by search engine algorithms.
Which platform as a service (PaaS) data type should be used?
A Short-term storage B Structured C Unstructured
D Long-term storage - ✔✔✔ANSWER-B
Which platform as a service (PaaS) storage architecture should be used if an organization wants to store presentations, documents, and audio files?
A Relational database B Block C Distributed
D Object - ✔✔✔ANSWER-D
Which technique scrambles the content of data using a mathematical algorithm while keeping the structural arrangement of the data?
A Dynamic masking B Format-preserving encryption C Proxy-based encryption
D Tokenization - ✔✔✔ANSWER-B
Which encryption technique connects the instance to the encryption instance that handles all crypto operations?
A Database B Proxy C Externally managed
D Server-side - ✔✔✔ANSWER-B
B The tokenization server generates the token. C The application collects a token.
D The application stores the token. - ✔✔✔ANSWER-D
A company has recently defined classification levels for its data.
During which phase of the cloud data life cycle should this definition occur?
A Use B Create C Share
D Archive - ✔✔✔ANSWER-B
Which jurisdictional data protection includes dealing with the international transfer of data?
A Financial modernization B Secure choice authorization (SCA) C Sarbanes-Oxley act (SOX)
D Privacy regulation - ✔✔✔ANSWER-D
Which jurisdictional data protection controls the ways that financial institutions deal with the private information of individuals?
A Stored communications act (SCA) B Health insurance portability and accountability act (HIPAA) C Gramm-Leach-Bliley act (GLBA)
D Sarbanes-Oxley act (SOX) - ✔✔✔ANSWER-C
Which jurisdictional data protection safeguards protected health information (PHI)?
A Directive 95/46/EC B Safe harbor regime C Personal Data Protection Act of 2000 D Health Insurance Portability and Accountability Act (HIPAA) - ✔✔✔ANSWER-D
How is the compliance of the cloud service provider's legal and regulatory requirements verified when securing personally identifiable information (PII) data in the cloud?
A Contractual agreements B Third-party audits and attestations
A Backup B Caching C Archiving
D Saving - ✔✔✔ANSWER-C
Which data retention method is stored with a minimal amount of metadata storage with the content?
A File system B Redundant array C Object-based
D Block-based - ✔✔✔ANSWER-D
What is a key capability of security information and event management?
A Intrusion prevention capabilities B Automatic remediation of issues C Centralized collection of log data
D Secure remote access - ✔✔✔ANSWER-C
Which data source provides auditability and traceability for event investigation as well as documentation?
A Storage files B Packet capture C Network interference
D Database tables - ✔✔✔ANSWER-B
Which data source provides auditability and traceability for event investigation as well as documentation?
A Network segmentation B Ephemeral storage C Database schema
D Virtualization platform logs - ✔✔✔ANSWER-D
Which technology is used to manage identity access management by building trust relationships between organizations?
A Single sign-on B Multifactor authentication C Federation
D Biometric authentication - ✔✔✔ANSWER-C
D On-demand self-service - ✔✔✔ANSWER-C
Which cloud computing tool may help detect data migrations to cloud services?
A Uniform resource locator (URL) filtering B Cloud security gateways C Cloud data transfer
D Data loss prevention - ✔✔✔ANSWER-D
What is a key component of the infrastructure as a service (IaaS) cloud service model?
A Allows choice and reduces lock-in B Supports multiple languages and frameworks C Ease of use and limited administration
D High reliability and resilience - ✔✔✔ANSWER-D
What is a key capability of infrastructure as a service (IaaS)?
A Hosted application management B Converged network and IT capacity pool
C Leased application and software licensing
D Multiple hosting environments - ✔✔✔ANSWER-B
Which option should an organization choose if there is a need to avoid software ownership?
A Software as a service (SaaS) B Platform as a service (PaaS) C Containers as a service (CaaS)
D Infrastructure as a service (IaaS) - ✔✔✔ANSWER-A
Which cloud model offers access to a pool of fundamental IT resources such as computing, networking, or storage?
A Infrastructure B Platform C Application
D Data - ✔✔✔ANSWER-A
In which situation could cloud clients find it impossible to recover or access their own data if their cloud provider goes bankrupt?
A Vendor lock-in
A Hybrid B Community C Private
D Public - ✔✔✔ANSWER-C
Which technology allows an organization to control access to sensitive documents stored in the cloud?
A Digital rights management (DRM) B Database activity monitoring (DAM) C Identity and access management (IAM)
D Distributed resource scheduling (DRS) - ✔✔✔ANSWER-A
Which security technology can provide secure network communications from on-site enterprise systems to a cloud platform?
A Domain name system security extensions (DNSSEC) B Internet protocol security (IPSec) virtual private network (VPN) C Web application firewall (WAF)
D Data loss prevention (DLP) - ✔✔✔ANSWER-B
How do immutable workloads effect security overhead?
A They reduce the management of the hosts. B They automatically perform vulnerability scanning as they launch. C They restrict the amount of instances in a cluster.
D They create patches for a running workload. - ✔✔✔ANSWER-A
Which document addresses CSP issues such as guaranteed uptime, liability, penalties, and dispute mediation process?
A General data protection regulation (GDPR) B Service organization control 3 (SOC 3) C Service level agreement (SLA)
D Common criteria assurance framework (CC) - ✔✔✔ANSWER-C
Which design principle of secure cloud computing ensures that the business can resume essential operations in the event of an availability-affecting incident?
A Disaster recovery B Resource pooling C Access control
D Session management - ✔✔✔ANSWER-A
C Federal Information Security Modernization Act
D U.S. Patriot Act - ✔✔✔ANSWER-B
Which standard addresses practices related to acquisition of forensic artifacts and can be directly applied to a cloud environment?
A NIST SP 500- B ISO/IEC 27001 C NIST SP 800-
D ISO/IEC 27050-1 - ✔✔✔ANSWER-D
Which regulation in the United States defines the requirements for a CSP to implement and report on internal accounting controls?
A HIPAA B SOX C FERPA
D GDPR - ✔✔✔ANSWER-B
Which legislation must a trusted cloud service adhere to when utilizing the data of EU citizens?
A GDPR
B EMTALA
C APPI
D SOX - ✔✔✔ANSWER-A
Which logical design decision can be attributed to required regulation?
A Database writes/second B Retention periods C Retention formats
D Database reads/second - ✔✔✔ANSWER-B
Which service model influences the logical design by using additional measures in the application to enhance security?
A Hybrid cloud B Public cloud C Software as a service (SaaS)
D Platform as a service (PaaS) - ✔✔✔ANSWER-C
Which environmental consideration should be addressed when planning the design of a data center?