Certmaster CE Security+ Domain 3.0 Security
Architecture Assessment |Question with 100%
Correct Answers
An organization is considering a hybrid cloud deployment to leverage the benefits of both
private and public cloud resources. While reviewing third-party vendors, what critical aspect
should the employees consider for a secure and effective transition? - ✔️✔️C. Establish clear
service level agreements
A rapidly growing e-commerce company is considering changes to its current on-premises
network infrastructure to handle increasing workloads better and provide high availability. The
company expresses concerns about the potential costs and complexity associated with
scalability and ease of recovery from potential failures. Which infrastructure options should the
company consider to address its needs? - ✔️✔️C. Implement a hybrid solution with a mix of on-
premises and cloud-based infrastructure.
A systems architect is designing a new data center. The architect looks at different factors such
as equipment type, data center location, and power specifications. What is the primary concern
during this stage of the process? - ✔️✔️D. Considerations
A major e-commerce company is planning for a disaster recovery strategy that balances
minimal data loss, quick recovery, and budget considerations. It needs a recovery site that does
not necessitate instant recovery but restores critical systems promptly. Which option BEST suits
the company's recovery site requirements? - ✔️✔️B. Establishing a warm site
During a security audit in a financial institution, the auditor identifies a subset of data that, if
breached, could severely impact the organization's operation. The financial institution has this
data currently stored on nonoperational servers. How would the institution classify this data? -
✔️✔️A. Critical
As a financial institution implementing a new security control device to protect its network
infrastructure, it wants to ensure that in the event of a failure, the confidentiality and integrity
, of its financial data take precedence over system availability. What should the financial
institution set as the failure mode configuration for this security control device? - ✔️✔️A. The
security control device should be configured to fail-closed.
A rock band wishes to set up a system for communicating with their fans upon arrival at
concerts and providing them with relevant hashtags for participation. Which type of cloud
service model would be MOST beneficial to recommend to the rock band? - ✔️✔️B. Software as
a service
A logistics company is contemplating certain steps for its data centers in its quest to fortify its
systems against long-term power outages. What is the MOST suitable measure the company
could undertake? - ✔️✔️D. Deploying onsite generators
A multinational corporation wants to standardize and automate the setup of its Information
Technology (IT) infrastructure across various branches. This would reduce manual setup errors
and allow for quicker deployment and scaling of resources as per demand. Which methodology
should the corporation adopt to accomplish this? - ✔️✔️C. Infrastructure as code
To address the escalating operational costs and complexities stemming from multiple
standalone applications, an organization plans to restructure its software deployment process.
They want to minimize overhead, increase flexibility in development environments, and
enhance the efficient use of system resources. What approach would be the MOST effective? -
✔️✔️C. Containerization
A network security administrator's responsibilities include enhancing the enterprise's network
infrastructure security posture. They deploy a Next Generation Firewall (NGFW) as part of their
defense strategy. The enterprise mixes internal and external services, including a web
application and a virtual private network (VPN) for remote access. Which of the following
should the administrator primarily consider when implementing the NGFW to ensure effective
security without disrupting normal operat - ✔️✔️C. Deploy the NGFW in inline mode, ensuring it
analyzes all traffic while maintaining connectivity.
A network engineer is optimizing an existing cloud-based system. The primary goal is to ensure
the system remains operational, minimizing downtime, even under adverse conditions or
Architecture Assessment |Question with 100%
Correct Answers
An organization is considering a hybrid cloud deployment to leverage the benefits of both
private and public cloud resources. While reviewing third-party vendors, what critical aspect
should the employees consider for a secure and effective transition? - ✔️✔️C. Establish clear
service level agreements
A rapidly growing e-commerce company is considering changes to its current on-premises
network infrastructure to handle increasing workloads better and provide high availability. The
company expresses concerns about the potential costs and complexity associated with
scalability and ease of recovery from potential failures. Which infrastructure options should the
company consider to address its needs? - ✔️✔️C. Implement a hybrid solution with a mix of on-
premises and cloud-based infrastructure.
A systems architect is designing a new data center. The architect looks at different factors such
as equipment type, data center location, and power specifications. What is the primary concern
during this stage of the process? - ✔️✔️D. Considerations
A major e-commerce company is planning for a disaster recovery strategy that balances
minimal data loss, quick recovery, and budget considerations. It needs a recovery site that does
not necessitate instant recovery but restores critical systems promptly. Which option BEST suits
the company's recovery site requirements? - ✔️✔️B. Establishing a warm site
During a security audit in a financial institution, the auditor identifies a subset of data that, if
breached, could severely impact the organization's operation. The financial institution has this
data currently stored on nonoperational servers. How would the institution classify this data? -
✔️✔️A. Critical
As a financial institution implementing a new security control device to protect its network
infrastructure, it wants to ensure that in the event of a failure, the confidentiality and integrity
, of its financial data take precedence over system availability. What should the financial
institution set as the failure mode configuration for this security control device? - ✔️✔️A. The
security control device should be configured to fail-closed.
A rock band wishes to set up a system for communicating with their fans upon arrival at
concerts and providing them with relevant hashtags for participation. Which type of cloud
service model would be MOST beneficial to recommend to the rock band? - ✔️✔️B. Software as
a service
A logistics company is contemplating certain steps for its data centers in its quest to fortify its
systems against long-term power outages. What is the MOST suitable measure the company
could undertake? - ✔️✔️D. Deploying onsite generators
A multinational corporation wants to standardize and automate the setup of its Information
Technology (IT) infrastructure across various branches. This would reduce manual setup errors
and allow for quicker deployment and scaling of resources as per demand. Which methodology
should the corporation adopt to accomplish this? - ✔️✔️C. Infrastructure as code
To address the escalating operational costs and complexities stemming from multiple
standalone applications, an organization plans to restructure its software deployment process.
They want to minimize overhead, increase flexibility in development environments, and
enhance the efficient use of system resources. What approach would be the MOST effective? -
✔️✔️C. Containerization
A network security administrator's responsibilities include enhancing the enterprise's network
infrastructure security posture. They deploy a Next Generation Firewall (NGFW) as part of their
defense strategy. The enterprise mixes internal and external services, including a web
application and a virtual private network (VPN) for remote access. Which of the following
should the administrator primarily consider when implementing the NGFW to ensure effective
security without disrupting normal operat - ✔️✔️C. Deploy the NGFW in inline mode, ensuring it
analyzes all traffic while maintaining connectivity.
A network engineer is optimizing an existing cloud-based system. The primary goal is to ensure
the system remains operational, minimizing downtime, even under adverse conditions or
