Are you ready for another practice exam for the next domain in our practice for the CCSK exam? Here it is! This one is not a big area for us in the exam, but it sure is important! It is all about Compliance and Audit Management, and of course, how the cloud makes many changes for us in this area.
CCSK Compliance and Audit Management
Start
Congratulations - you have completed CCSK Compliance and Audit Management .
You scored %%SCORE%% out of %%TOTAL%%.
Your performance has been rated as %%RATING%%
Your answers are highlighted below.
Question 1
What entity of cloud is always ultimately responsible for compliance?
A
Cloud provider
B
Cloud customer
C
Cloud broker
D
Cloud gateway
Question 2
Cloud customers of public cloud must rely on what in order to understand their compliance alignment and gaps?
A
Third party attestations
B
Internal audits
C
External audits
D
Contracts
Question 3
With compliance inheritance the cloud provider's infrastructure is out of scope for a customer's compliance audit, but everything the customer configures and builds on top of the certified services is still within scope. True or false?
A
False
B
True
Question 4
What is the term for logs, documentation, and other materials needed for audits and compliance?
A
Artifacts
B
Traces
C
Contracts
D
Depositions
Once you are finished, click the button below. Any items you have not completed will be marked incorrect.
Get Results
There are 4 questions to complete.
←
List
→
Return
Shaded items are complete.
1
2
3
4
End
Return
You have completed
questions
question
Your score is
Correct
Wrong
Partial-Credit
You have not finished your quiz. If you leave this page, your progress will be lost.
CCSK Legal Issues, Contracts and Electronic Discovery
Start
Congratulations - you have completed CCSK Legal Issues, Contracts and Electronic Discovery.
You scored %%SCORE%% out of %%TOTAL%%.
Your performance has been rated as %%RATING%%
Your answers are highlighted below.
Question 1
Applicable legal requirements will vary tremendously based on what?
A
Organization size
B
Organization age
C
Various storage types
D
Various jurisdictions
Question 2
Even if there are no laws governing how your data is to be used and stored, you might have obligations worked out with your cloud provider and detailed in what?
A
A provider assessment
B
A provider audit
C
A contract
D
An attestation
Question 3
When you are working with a cloud provider and you are concerned about external due diligence, you would be concerned about all of the following except which item?
A
SLAs
B
Hypervisor in use
C
End user agreements
D
Proof of compliance
Question 4
Your company is involved in a legal dispute, and much of the required evidence is located in the systems of your cloud provider. What is often the result of this arrangement?
A
A new contract signed by both parties
B
A subpoena or other discovery process served directly to the provider
C
Reliance on existing contracts
D
An assumption of guilt
Question 5
Bit-by-bit imaging of a cloud data source is generally not possible. What area of collection does this refer to?
A
Access and bandwidth
B
Forensics
C
Reasonable integrity
D
Limits to accessibility
Once you are finished, click the button below. Any items you have not completed will be marked incorrect.
Get Results
There are 5 questions to complete.
←
List
→
Return
Shaded items are complete.
1
2
3
4
5
End
Return
You have completed
questions
question
Your score is
Correct
Wrong
Partial-Credit
You have not finished your quiz. If you leave this page, your progress will be lost.
