D320 EXAM WITH COMPLETE SOLUTIONS 100% VERIFIED!!
-D320 QUESTIONS
-D320 Study Guide Key Terms in Risk Management and Security
D320 QUESTIONS
Which of the following is NOT part of contractual PII?
A. Scope of processing
B. Value of data
C. Location of data
D. Use of subcontractors - ANSWER B. Value of data
Which of the following concepts describes a cloud customer paying only for the
resources and offerings they use within a cloud environment, and only for the duration
that they are consuming them?
A. Consumable service
B. Measured service
C. Billable service
D. Metered service - ANSWER B. Measured service
Where is the best place to get information about securing the BIOS of a physical asset?
A. Security policies
B. Manual pages
C. Vendor documentation
D. Regulations - ANSWER C. Vendor documentation M
,Which of the following is NOT contractual PII?
A. Scope of processing
B. Value of data Most Voted
C. Location of data
D. Use of subcontractors - ANSWER B. Value of data
Which of the following roles is responsible for testing, monitoring, and securing cloud
services for an organization?
A. Cloud service integrator
B. Cloud service business manager
C. Cloud service user
D. Cloud service administrator - ANSWER D. Cloud service administrator
What is the only data format allowed with the SOAP API?
A. HTML
B. SAML
C. XSML
D. XML - ANSWER D. XML
Which are the most common data formats with the REST API?
A. JSON and SAML
B. XML and SAML
C. XML and JSON
D. SAML and HTML - ANSWER C. XML and JSON
What form of the following threats would be considered when an application fails to
validate authorization for parts of itself after initial checks?
A. Injection
,B. Missing function-level access control
C. Cross-site request forgery
D. Cross-site scripting - ANSWER B. Missing function-level access control
Which of the following roles would be responsible for an organization's billing,
purchasing, and audit reporting requests pertaining to a cloud environment?
A. Cloud service user
B. Cloud service business manager
C. Cloud service administrator
D. Cloud service integrator - ANSWER B. Cloud service business manager
What is the greatest risk associated with maintaining a key management system outside
of the cloud environment?
A. Confidentiality
B. Portability
C. Availability
D. Integrity - ANSWER C. Availability
Which of the following would NOT be sufficient to satisfy the needs of secure data
destruction in a cloud?
A. Cryptographic erasure
B. Zeroing
C. Overwriting
D. Deletion - ANSWER D. Deletion
Which of the following characteristics of the cloud makes eDiscovery more difficult?
A. Resource pooling
B. On-demand self-service
, C. Multitenancy
D. Measured service - ANSWER C. Multitenancy
To what does the management plane commonly interface in order to perform
administrative tasks on the hypervisors that it is responsible for?
A. Scripts
B. RDP
C. APIs
D. XML - ANSWER C. APIs
What is a serious complication an organization has to deal with from a compliance
perspective that is associated with international operations?
A. Multiple certifications
B. Multi-jurisdictional
C. Multiple different capabilities
D. Multiple different operational procedures
Show Solution - ANSWER B. Multi-jurisdictional
Which networking concept in cloud allows network separation and isolation of IP
spaces?
A. PLAN
B. WAN
C. LAN
D. VLAN - ANSWER D. VLAN
Which of the following standards primarily applies to the cabling designs and
installations in a data center?
A. IDCA
B. BICSI
-D320 QUESTIONS
-D320 Study Guide Key Terms in Risk Management and Security
D320 QUESTIONS
Which of the following is NOT part of contractual PII?
A. Scope of processing
B. Value of data
C. Location of data
D. Use of subcontractors - ANSWER B. Value of data
Which of the following concepts describes a cloud customer paying only for the
resources and offerings they use within a cloud environment, and only for the duration
that they are consuming them?
A. Consumable service
B. Measured service
C. Billable service
D. Metered service - ANSWER B. Measured service
Where is the best place to get information about securing the BIOS of a physical asset?
A. Security policies
B. Manual pages
C. Vendor documentation
D. Regulations - ANSWER C. Vendor documentation M
,Which of the following is NOT contractual PII?
A. Scope of processing
B. Value of data Most Voted
C. Location of data
D. Use of subcontractors - ANSWER B. Value of data
Which of the following roles is responsible for testing, monitoring, and securing cloud
services for an organization?
A. Cloud service integrator
B. Cloud service business manager
C. Cloud service user
D. Cloud service administrator - ANSWER D. Cloud service administrator
What is the only data format allowed with the SOAP API?
A. HTML
B. SAML
C. XSML
D. XML - ANSWER D. XML
Which are the most common data formats with the REST API?
A. JSON and SAML
B. XML and SAML
C. XML and JSON
D. SAML and HTML - ANSWER C. XML and JSON
What form of the following threats would be considered when an application fails to
validate authorization for parts of itself after initial checks?
A. Injection
,B. Missing function-level access control
C. Cross-site request forgery
D. Cross-site scripting - ANSWER B. Missing function-level access control
Which of the following roles would be responsible for an organization's billing,
purchasing, and audit reporting requests pertaining to a cloud environment?
A. Cloud service user
B. Cloud service business manager
C. Cloud service administrator
D. Cloud service integrator - ANSWER B. Cloud service business manager
What is the greatest risk associated with maintaining a key management system outside
of the cloud environment?
A. Confidentiality
B. Portability
C. Availability
D. Integrity - ANSWER C. Availability
Which of the following would NOT be sufficient to satisfy the needs of secure data
destruction in a cloud?
A. Cryptographic erasure
B. Zeroing
C. Overwriting
D. Deletion - ANSWER D. Deletion
Which of the following characteristics of the cloud makes eDiscovery more difficult?
A. Resource pooling
B. On-demand self-service
, C. Multitenancy
D. Measured service - ANSWER C. Multitenancy
To what does the management plane commonly interface in order to perform
administrative tasks on the hypervisors that it is responsible for?
A. Scripts
B. RDP
C. APIs
D. XML - ANSWER C. APIs
What is a serious complication an organization has to deal with from a compliance
perspective that is associated with international operations?
A. Multiple certifications
B. Multi-jurisdictional
C. Multiple different capabilities
D. Multiple different operational procedures
Show Solution - ANSWER B. Multi-jurisdictional
Which networking concept in cloud allows network separation and isolation of IP
spaces?
A. PLAN
B. WAN
C. LAN
D. VLAN - ANSWER D. VLAN
Which of the following standards primarily applies to the cabling designs and
installations in a data center?
A. IDCA
B. BICSI