ECCouncil 312-40 - Certified Cloud Security Engineer Exam

Page:    1 / 25   
Total 125 questions

Lexie Roth works as a cloud security engineer in an IT company located in Boston, Massachusetts. Her organization generates a huge amount of data. To increase the storage size, speed, and fault tolerance, Lexie would like to configure and create a RAID. Therefore, she created a RAID on Windows Server 2016, which includes block-level striping with a distributed parity. The parity information is distributed among all drives, except one. The data chunks in the RAID are larger than the regular I/O size, but they can be re-sized. To prevent data loss after a drive fails, data are calculated from the distributed parity. The RAID configured by Lexie requires at least three disks, but for robust performance, Lexie used seven disks. Based on the given information, which of the following RAID was configured and created by Lexie?

  • A. RAID 3
  • B. RAID 5
  • C. RAID 1
  • D. RAID 0


Answer : B

Cindy Williams has been working as a cloud security engineer in an IT company situated in Austin, Texas. Owing to the robust security and cost-effective features provided by AWS, her organization adopted AWS cloud-based services. Cindy has deployed an application in the Amazon Elastic Compute Cloud (EC2) instance. Which of the following cloud computing service model does the Amazon EC2 instance represent?

  • A. SaaS
  • B. DaaS
  • C. PaaS
  • D. IaaS


Answer : D

Billy Pratt works as a cloud security engineer in an MNC. In 2012, his organization transferred all applications and data into an AWS cloud environment. Billy would like to analyze, investigate, and identify the root cause of malicious activities in his organization’s AWS cloud environment. Which of the following Amazon services automatically collects data from various AWS resources and utilizes machine learning, statistical analysis, and graph theory to provide a unified and interactive view of resources and users that would help Billy in determining the root cause of suspicious activities?

  • A. Amazon Inspector
  • B. Amazon Detective
  • C. Amazon GuardDuty
  • D. Amazon Macie


Answer : B

The TCK Bank adopts cloud for storing the private data of its customers. The bank usually explains its information sharing practices to its customers and safeguards sensitive data. However, there exist some security loopholes in its information sharing practices. Therefore, hackers could steal the critical data of the bank’s customers. In this situation, under which cloud compliance framework will the bank be penalized?

  • A. ITAR
  • B. GLBA
  • C. NIST
  • D. GDPR


Answer : B

Gabriel Bateman has been working as a cloud security engineer in an IT company for the past 5 years. Owing to the recent onset of the COVID-19 pandemic, his organization has given the provision to work from home to all employees. Gabriel’s organization uses Microsoft Office 365 that allows all employees access files, emails, and other Office programs securely from various locations on multiple devices. Who among the following is responsible for patch management in Microsoft Office 365?

  • A. Both Gabriel’s organization and Microsoft share responsibilities for patch management
  • B. Gabriel’s organization should outsource patch management to a third party
  • C. Gabriel’s organization is entirely responsible for patch management
  • D. Microsoft is entirely responsible for patch management


Answer : D

Page:    1 / 25   
Total 125 questions