WGU D320 - Managing Cloud Security (2024) Questions With Complete Solutions
WGU D320 - Managing Cloud Security
(2024) Questions With Complete
Solutions.
Which phase of the cloud data life cycle requires adherence to export and import
restrictions, including Export Administration Regulations (EAR) and the Wassenaar
Arrangement?
A) Create
B) Share
C) Use
D) Destroy Answer- B
Why is the striping method of storing data used in most redundant array of
independent disks (RAID) configurations?
A) It prevents outages and attacks from occurring in a cloud environment.
B) It prevents data from being recovered once it is destroyed using crypto-shredding.
C) It allows data to be safely distributed and stored in a common centralized location.
D) It allows efficient data recovery as even if one drive fails, other drives fill in the
missing data. Answer- D
What is the purpose of egress monitoring tools?
A) They are used to convert a given set of data or information into a different value.
B) They are used to prevent data from going outside the control of an organization.
C) They are used to create data during the Create phase of the cloud data life cycle.
D) They are used to remove data during the Destroy phase of the cloud data life
cycle. Answer- B
A company is looking at different types of cloud storage options. One of the threats
to cloud storage that the company foresees is the possibility of losing forensic
artifacts in the event of an incident response investigation.
Which type of cloud storage has the highest risk of losing forensic artifacts in the
event of an incident response investigation?
A) File-based
B) Long-term
C) Block
D) Ephemeral Answer- D
A manager is made aware of a customer complaint about how an application
developed by the company collects personal and environmental information from the
devices it is installed on.
Which document should the manager refer to in order to determine if the company
has properly disclosed information about what data it collects from this application's
users?
A) Retention policy
B) Breach notification
C) Privacy notice
D) Denial of service Answer- C
An organization needs to store passwords in a database securely. The data should
not be available to system administrators.
Which technique should the organization use?
A) Encryption
B) Hashing
C) Encoding
D) Masking Answer- B
A company is looking to ensure that the names of individuals in its data in the cloud
are not revealed in the event of a data breach, as the data is sensitive and classified.
Which data masking technique should the company use to prevent attackers from
identifying individuals in the event of a data breach?
A) Crypto-shredding
B) Degaussing
C) Anonymization
D) Randomization Answer- C
An organization needs to quickly identify the document owner in a shared network
folder.
Which technique should the organization use to meet this goal?
A) Labeling
B) Classification
C) Mapping
D) Categorization Answer- A
An organization plans to introduce a new data standard and wants to ensure that
system inventory data will be efficiently discovered and processed.
Which type of data should the organization use to meet this goal?
A) Structured
B) Semi-structured
C) Annotated
D) Mapped Answer- A
An organization implemented an information rights management (IRM) solution to
prevent critical data from being copied without permission and a cloud backup
solution to ensure that the critical data is protected from storage failures.
Which IRM challenge will the organization need to address?
A) Jurisdictional conflicts
B) Agent conflicts
C) Replication restrictions
D) Execution restrictions Answer- C
A data center engineer is tasked with the destruction of data on solid-state drives
(SSDs). The engineer must ensure that the data is not able to be retrieved.
Which data destruction action should the engineer take to meet this goal?
A) Overwriting
B) Crypto-shredding
C) Wiping
D) Degaussing Answer- B
An organization wants to gather and interpret logs from its cloud environment.
Which system should the organization use for this task?
A) Simple Network Management Protocol (SNMP)
B) Security Information and Event Management (SIEM)
C) Business Process Management (BPM)
D) Distributed System Management (DSM) Answer- B
An organization with a Security Information and Event Management (SIEM) system
wants to minimize errors or missed issues due to human log analysis.
Which SIEM policy should the organization use in this case?
A) Automated analysis of metadata
B) Automated analysis of data sets
C) Manually generated analysis of data sets
D) Manually generated analysis of metadata Answer- B
Which software type allows multiple operating systems to run on the same physical
server in a virtualized environment?
A) Hypervisor
B) Container
C) Quantum computing
D) Blockchain technology Answer- A
What is the name of the process of automatically provisioning, configuring, and
managing virtual machines and other resources in a virtualized environment?
A) Continuous deployment
B) Orchestration
C) Programmability
D) Continuous integration Answer- B
Which cloud computing characteristic allows customers to manage their utilization by
only paying for the resources used?
A) Metered service
B) Broad network access
C) Rapid elasticity
D) On-demand self-service Answer- A
Which cloud deployment model allows customers to take advantage of service and
price differences from two or more cloud vendors?
A) Public cloud
B) Hybrid cloud
C) Multi-cloud
D) Private cloud Answer- C
Which cloud consideration refers to the ability of the infrastructure to withstand
disruptive events?
A) Governance
B) Availability
C) Resiliency
D) Maintenance Answer- C
Which technology is used to protect the confidentiality of data from on-path attacks?
A) Bring your own device (BYOD)
B) Data loss prevention (DLP)
C) Information Rights Management (IRM)
D) Transport Layer Security (TLS) Answer- D
Which technology allows cryptographic secrets to be held in a secure way so that
they can be recovered by parties who have authorization?
A) Revocation
B) Key distribution
C) Key escrow
D) Lifetime Answer- C
Which safety control acts as a virtual firewall in cloud environments?
A) Traffic inspection
Category | Exams and Certifications |
Comments | 0 |
Rating | |
Sales | 0 |