Question 67

- (Exam Topic 2)
An audit against the ______ will demonstrate that an organization has ¬adequate security controls to meet its ISO 27001 requirements.
Response:

Correct Answer:C

Question 68

- (Exam Topic 1)
You are the security manager for an online retail sales company with 100 employees and a production environment hosted in a PaaS model with a major cloud provider.
Your company policies have allowed for a BYOD workforce that work equally from the company offices and their own homes or other locations. The policies also allow users to select which APIs they install and use on their own devices in order to access and manipulate company data.
Of the following, what is a security control you’d like to implement to offset the risk(s) incurred by this practice?

Correct Answer:A

Question 69

- (Exam Topic 2)
What are the phases of a software development lifecycle process model? Response:

Correct Answer:A

Question 70

- (Exam Topic 1)
You are the security manager of a small firm that has just purchased a DLP solution to implement in your cloud-based production environment.
In order to increase the security value of the DLP, you should consider combining it with ______.
Response:

Correct Answer:A

Question 71

- (Exam Topic 1)
All of the following are usually nonfunctional requirements except ______.
Response:

Correct Answer:D

Question 72

- (Exam Topic 3)
When a customer performs a penetration test in the cloud, why isn’t the test an optimum simu-lation of attack conditions?
Response:

Correct Answer:B

START CCSP EXAM