ISC2-CC Certified in Cybersecurity Practice Exams

A systems manager at Aurora Networks plans to migrate the company’s routers switches firewalls and servers into a public cloud. The manager wants to keep responsibility for the servers’ operating systems and the applications that will run on them while no longer maintaining any physical devices. Which cloud service model best fits this need?

• ❏ A. Software as a Service

• ❏ B. Metal as a Service

• ❏ C. Platform as a Service

• ❏ D. Infrastructure as a Service

Which statement is not a typical characteristic of a privileged administrative account?

• ❏ A. Can create accounts and assign access rights

• ❏ B. Does not have direct access to servers and infrastructure devices

• ❏ C. Requires multi factor authentication

Choosing a site for a hosting facility is challenging because every location faces some form of natural hazard. Which of the following measures can physically lessen the damage to a data center from earthquakes high winds or flying debris?

• ❏ A. Cross region data replication

• ❏ B. Encryption at rest

• ❏ C. Structural building reinforcement

• ❏ D. Autoscaling compute resources

Which approach most effectively identifies cloud vulnerabilities and guides remediation priorities during a cloud migration?

• ❏ A. Cloud security posture management

• ❏ B. Regular security and risk assessments for the cloud

• ❏ C. Employee cybersecurity training

Which protective layer should surround a virtual machine subnet or other cloud resource to implement a defense in depth strategy?

• ❏ A. Cloud Armor

• ❏ B. Contextual access controls

• ❏ C. Ingress and egress controls

• ❏ D. Network security group

What does social engineering mean in a security context?

• ❏ A. User behavior analytics

• ❏ B. Manipulating people to reveal confidential information

• ❏ C. Security awareness training

Which blockchain model delivers a distributed and secure approach to managing data in a cloud setting while preserving data privacy and allowing the organization to retain control?

• ❏ A. Hybrid blockchain

• ❏ B. Public blockchain

• ❏ C. Private blockchain

• ❏ D. Consortium blockchain

Which option is an example of two factor authentication?

• ❏ A. Biometric fingerprint

• ❏ B. Password and one-time passcode

• ❏ C. Password

Which two protocols make up the core layers of Transport Layer Security for encrypted network traffic?

• ❏ A. TLS establishment protocol and TLS record protocol

• ❏ B. Google Cloud Load Balancing

• ❏ C. TLS handshake protocol and TLS record protocol

• ❏ D. TLS handshake protocol and TLS connection protocol

What is metadata in a data governance context?

• ❏ A. Security sensitivity labels

• ❏ B. Information that describes other data

• ❏ C. Personal identity information

All question come from the certificationexams.pro practice exams website and my ISC2-CC Udemy Course.

A regional retail chain named HarborMart keeps customer records in cloud object storage and needs to monitor how staff and external contractors access that data for security and auditing. What should the security team maintain to ensure continuous visibility and enable effective monitoring?

• ❏ A. Application specific logs

• ❏ B. Chain of custody documentation

• ❏ C. Cloud Audit Logs

• ❏ D. Centralized log repository

Why should an organization periodically review and revise its disaster recovery plan to keep it current?

• ❏ A. To uncover emerging threats and security gaps

• ❏ B. To keep recovery procedures effective as systems personnel and processes change

• ❏ C. To satisfy evolving regulatory and compliance obligations

Which type of information does HIPAA primarily regulate in the United States?

• ❏ A. Personal data of European Union residents

• ❏ B. Protected health information in the United States

• ❏ C. User generated content on social media platforms

• ❏ D. Protected health information in the European Union

Which security control restricts system access so users have only the permissions needed for their functions?

• ❏ A. Separation of duties

• ❏ B. Least privilege

• ❏ C. Role based access control

In a public key encryption scenario if Marco wants to send a confidential message to Elena which key should he use to encrypt the message?

• ❏ A. Marco’s public key

• ❏ B. Elena’s public key

• ❏ C. Marco’s private key

• ❏ D. Elena’s private key

Which method do security teams commonly use to detect zero day attacks?

• ❏ A. Network telemetry analysis

• ❏ B. Forensic analysis of recovered malware samples

• ❏ C. Endpoint behavior monitoring

Which cloud computing attribute allows a provider to lower operating expenses by sharing the same infrastructure among many customers?

• ❏ A. Measured Service

• ❏ B. Shared Resource Pooling

• ❏ C. Google Compute Engine

• ❏ D. On Demand Self Service

Which type of log records temperature and humidity sensor readings inside server closets?

• ❏ A. HVAC system logs

• ❏ B. Facility environmental logs

• ❏ C. Access control logs

A regional payments startup called Riverfront is drafting an operations management plan for its cloud platform and it identifies orchestration scheduling and maintenance as core pillars which of the following is not regarded as a primary component of that management plan?

• ❏ A. Task scheduling

• ❏ B. Service orchestration

• ❏ C. Rapid elasticity

• ❏ D. Ongoing maintenance

What is typically specified in a cloud service SLA?

• ❏ A. Incident response responsibilities

• ❏ B. Data ownership and deletion procedures

• ❏ C. Availability and uptime targets

How do mass phishing campaigns differ from spear phishing attacks in their targeting and message personalization?

• ❏ A. Phishing always uses email while spear phishing uses other messaging channels

• ❏ B. Google Cloud Armor

• ❏ C. Phishing uses broad untargeted messages sent to many recipients while spear phishing focuses on an individual or a small team with customized messages

• ❏ D. Phishing impersonates only companies while spear phishing never impersonates organizations

What is the primary risk of depending on a single software or managed services supplier?

• ❏ A. Single point of failure causing outages

• ❏ B. Inability to switch providers without substantial effort or cost

• ❏ C. Limited interoperability with other systems

CareCo is a regional logistics firm and it has mapped its risk workflow and needs to confirm what activity concludes the risk management cycle. What is the final step in the risk management process?

• ❏ A. Identifying potential risks

• ❏ B. Applying mitigation controls

• ❏ C. Ongoing monitoring and review

• ❏ D. Evaluating and prioritizing risks

Which attack most seriously compromises a cryptographic system when key distribution is not properly protected?

• ❏ A. Brute force attack

• ❏ B. Man in the Middle attack

• ❏ C. Replay attack

In a typical data loss prevention rollout what is the final implementation phase?

• ❏ A. Cloud Data Loss Prevention API

• ❏ B. Asset discovery and classification

• ❏ C. Policy enforcement and remediation

• ❏ D. Continuous monitoring of data activity

The correct answer is: Infrastructure as a Service

The correct answer is: Does not have direct access to servers and infrastructure devices

The correct answer is: Structural building reinforcement

The correct answer is: Regular security and risk assessments for the cloud.

The correct answer is: Network security group

The correct answer is: Manipulating people to reveal confidential information

The correct answer is Private blockchain.

The correct answer is: Password and one-time passcode

The correct answer is: TLS handshake protocol and TLS record protocol

The correct answer is: Information that describes other data

The correct answer is: Centralized log repository

The correct answer is: To keep recovery procedures effective as systems personnel and processes change

The correct answer is: Protected health information in the United States

The correct answer is: Least privilege

The correct answer is: Elena’s public key

The correct answer is: Forensic analysis of recovered malware samples

The correct answer is: Shared Resource Pooling.

The correct answer is: Facility environmental logs

The correct answer is: Rapid elasticity

The correct answer is: Data ownership and deletion procedures

The correct answer is: Phishing uses broad untargeted messages sent to many recipients while spear phishing focuses on an individual or a small team with customized messages

The correct answer is: Inability to switch providers without substantial effort or cost.

The correct answer is: Ongoing monitoring and review.

The correct answer is: Man in the Middle attack

The correct answer is: Policy enforcement and remediation