EMT Practice Test

1. Question Content...


Question List

Question1: How is encryption managed on multi-tenant storage?

Question2: Your cloud and on-premises infrastructures should always use the same network address ranges.

Question3: Which data security control is the LEAST likely to be assigned to an IaaS provider?

Question4: CCM: In the CCM tool, a is a measure that modifies risk and includes any process, policy, device, practice or any other actions which modify risk.

Question5: Which concept provides the abstraction needed for resource pools?

Question6: When deploying Security as a Service in a highly regulated industry or environment, what should both parties agree on in advance and include in the SLA?

Question7: What is known as a code execution environment running within an operating system that shares and uses the resources of the operating system?

Question8: Which of the following items is NOT an example of Security as a Service (SecaaS)?

Question9: How does running applications on distinct virtual networks and only connecting networks as needed help?

Question10: What factors should you understand about the data specifically due to legal, regulatory, and jurisdictional factors?

Question11: Which of the following statements are NOT requirements of governance and enterprise risk management in a cloud environment?

Question12: CCM: The following list of controls belong to which domain of the CCM?
GRM 06 - Policy GRM 07 - Policy Enforcement GRM 08 - Policy Impact on Risk Assessments GRM 09 - Policy Reviews GRM 10 - Risk Assessments GRM 11 - Risk Management Framework

Question13: Which layer is the most important for securing because it is considered to be the foundation for secure cloud operations?

Question14: Big data includes high volume, high variety, and high velocity.

Question15: Which term is used to describe the use of tools to selectively degrade portions of the cloud to continuously test business continuity?

Question16: Sending data to a provider's storage over an API is likely as much more reliable and secure than setting up your own SFTP server on a VM in the same provider

Question17: What is defined as the process by which an opposing party may obtain private documents for use in litigation?

Question18: Network logs from cloud providers are typically flow records, not full packet captures.

Question19: Who is responsible for the security of the physical infrastructure and virtualization platform?

Question20: What is the newer application development methodology and philosophy focused on automation of application development and deployment?