WGU Course C838 - Managing Cloud Security QUESTIONS AND ANSWERS LATEST A GRADED

ne




tz
sh




ne
WGU Course C838 - Managing Cloud Security C838 OA
la
QUESTIONS AND ANSWERS LATEST 2023-2024



tz




sh
Sp
|AGRADE
ne




la

tz
sh




Sp

ne
la

tz




sh
Sp

ne




la

tz
sh


Which phase of the cloud data life cycle allows both read and process functions to be




Sp
performed?




ne
la



A Create
tz


B Archive




sh
Sp




C Store
ne



D Share - Answer A



la

tz
Which phase of the cloud data security life cycle typically occurs simultaneously with
sh




Sp
creation?




ne
la




A Share
tz




B Store sh
Sp




C Use
ne




D Destroy - Answer B
la

tz
Which phase of the cloud data life cycle uses content delivery networks?
sh




Sp

ne
A Destroy
la




B Archive
tz




C Share
sh
Sp




D Create - Answer C
ne




la


Which phase of the cloud data life cycle is associated with crypto-shredding?
tz
sh




Sp




A Share
ne


B Use
C Destroy
la

tz




D Store - Answer C
sh
Sp

ne




la
sh




Sp
la
Sp

, ne




tz
sh




ne
Which cloud data storage architecture allows sensitive data to be replaced with unique
la
identification symbols that retain all the essential information about the data without




tz
compromising its security?




sh
Sp
A Randomization
ne




la
B Obfuscation




tz
C Anonymization
sh




Sp
D Tokenization - Answer D




ne
la

Which methodology could cloud data storage utilize to encrypt all data associated in an
tz
infrastructure as a service (IaaS) deployment model?




sh
Sp

ne

A Sandbox encryption
B Polymorphic encryption




la

tz
C Client-side encryption
sh




Sp
D Whole-instance encryption - Answer D




ne
There is a threat to a banking cloud platform service. The developer needs to provide
la




inclusion in a relational database that is seamless and readily searchable by search
tz




sh
engine algorithms.
Sp

ne



Which platform as a service (PaaS) data type should be used?


la

tz
sh




A Short-term storage
Sp
B Structured




ne
C Unstructured
la




D Long-term storage - Answer B
tz




sh
Sp




Which platform as a service (PaaS) storage architecture should be used if an
ne




organization wants to store presentations, documents, and audio files?
la

tz
sh




A Relational database
Sp

B Block
ne
C Distributed
la




D Object - Answer D
tz




sh
Sp




Which technique scrambles the content of data using a mathematical algorithm while
ne




keeping the structural arrangement of the data?
la

tz

A Dynamic masking
sh




Sp




B Format-preserving encryption
ne


C Proxy-based encryption
la




D Tokenization - Answer B
tz




sh
Sp




Which encryption technique connects the instance to the encryption instance that
ne




handles all crypto operations?
la
sh




Sp
la
Sp

, ne




tz
sh




ne
A Database
la

tz
B Proxy




sh
Sp
C Externally managed
D Server-side - Answer B
ne




la

tz
Which type of control should be used to implement custom controls that safeguard
sh




Sp
data?




ne
la

A Public and internal sharing
tz
B Options for access




sh
Sp


C Management plane
ne

D Application level - Answer D




la

tz
Which element is protected by an encryption system?
sh




Sp

ne
A Ciphertext
B Management engine
la




C Data
tz




sh
D Public key - Answer C
Sp

ne



A cloud administrator recommends using tokenization as an alternative to protecting


la
data without encryption. The administrator needs to make an authorized application




tz
sh




request to access the data.
Sp

ne
Which step should occur immediately before this action is taken?
la

tz




A The tokenization server returns the token to the application.
sh
Sp




B The tokenization server generates the token.
ne




C The application collects a token.
la
D The application stores the token. - Answer D
tz
sh




Sp

A company has recently defined classification levels for its data.
ne
la




During which phase of the cloud data life cycle should this definition occur?
tz




sh
Sp




A Use
ne




B Create
la


C Share
tz

D Archive - Answer B
sh




Sp

ne


Which jurisdictional data protection includes dealing with the international transfer of
la




data?
tz




sh
Sp




A Financial modernization
ne




B Secure choice authorization (SCA)
la
sh




Sp
la
Sp

, ne




tz
sh




ne
C Sarbanes-Oxley act (SOX)
la
D Privacy regulation - Answer D




tz




sh
Sp
Which jurisdictional data protection controls the ways that financial institutions deal with

ne
the private information of individuals?




la

tz
A Stored communications act (SCA)
sh




Sp
B Health insurance portability and accountability act (HIPAA)




ne
C Gramm-Leach-Bliley act (GLBA)
la

D Sarbanes-Oxley act (SOX) - Answer C
tz




sh
Sp


Which jurisdictional data protection safeguards protected health information (PHI)?
ne

A Directive 95/46/EC




la

tz
B Safe harbor regime
sh




Sp
C Personal Data Protection Act of 2000




ne
D Health Insurance Portability and Accountability Act (HIPAA) - Answer D
la




How is the compliance of the cloud service provider's legal and regulatory requirements
tz




sh
verified when securing personally identifiable information (PII) data in the cloud?
Sp

ne



A Contractual agreements


la
B Third-party audits and attestations




tz
sh




C e-Discovery process
Sp
D Researching data retention laws - Answer B




ne
la




Which security strategy is associated with data rights management solutions?
tz




sh
Sp




A Unrestricted replication
ne




B Limited documents type support
la
C Static policy control
tz
sh




D Continuous auditing - Answer D
Sp

ne
Who retains final ownership for granting data access and permissions in a shared
la




responsibility model?
tz




sh
Sp




A Customer
ne




B Developer
la


C Manager
tz

D Analyst - Answer A
sh




Sp

ne


Which data retention solution should be applied to a file in order to reduce the data
la




footprint by deleting fixed content and duplicate data?
tz




sh
Sp




A Backup
ne




B Caching
la
sh




Sp
la
Sp