QUESTION 41
Which of the following methodologies involves configuring a CI/CD pipeline that includes automated security tests?
A. Package management
B. Version management
C. GitOps
D. DevSecOps
E. CIS hardening
Correct Answer: D
QUESTION 42
Which of the following is used to quickly deploy applications across different cloud providers?
A. Snapshot
B. Container image
C. Serverless function
D. VM template
Correct Answer: B
QUESTION 43
Which of the following is the correct order of the steps to take when a system is suspected of being vulnerable?
A. Scanning scope, identification, assessment, and remediation
B. Assessment, identification, scanning scope, and remediation
C. Identification, scanning scope, assessment, and remediation
D. Assessment, scanning scope, identification, and remediation
Correct Answer: C
QUESTION 44
A cloud engineer is concerned about command-and-control (C2) communication out of a cloud network over HTTPS. Which of the following should the cloud engineer implement to most efficiently identify the type of communication?
A. Inline IPS
B. Cloud flow logs
C. Hourly cron listing connections
D. Traffic mirroring
Correct Answer: B
QUESTION 45
Which of the following resources brings content near a geographic location for faster access?
A. Cloud bursting
B. Region
C. Edge computing
D. Availability zone
Correct Answer: C
QUESTION 46
Which of the following package managers would most likely be used with Ubuntu Linux?
A. YUM
B. DNF
C. Pacman
D. APT
Correct Answer: D
QUESTION 47
Which of the following is the most cost-effective and efficient strategy when migrating containers to the cloud?
A. Retire
B. Replatform
C. Retain
D. Refactor
Correct Answer: B
QUESTION 48
A security engineer recently discovered a vulnerability in the operating system of the company VMs. The operations team reviews the issue and decides all VMs need to be updated from version 3.4.0 to 3.5.0. Which of the following best describes the type of update that will be applied?
A. Consistent
B. Patch
C. Minor
D. Ephemeral
Correct Answer: C
QUESTION 49
Which of the following is an example of refactoring?
A. Creation of a container registry
B. Code changes to facilitate platform hosting
C. Operating system upgrade
D. Document conversion to a secure file format
Correct Answer: B
QUESTION 50
An organization and its customer both signed an obligatory agreement that requires both parties to encrypt the data exchanged between the organization and the customer environment. Which of the following best describes this agreement?
A. Regulatory
B. Litigation
C. Contractual
D. Subscription
Correct Answer: C
QUESTION 51
Which of the following concepts refers to edge computing?
A. Compute resources at a retail store sending data to the cloud
B. Compute resources at a retail store analyzing point-of-sale transactions
C. Compute resources in a public cloud data center analyzing recent sales data
D. Compute resources in an on-premises data center analyzing quarterly sales reports
Correct Answer: B
QUESTION 52
A developer sends multiple requests to a SaaS application in a short amount of time. The developer realizes that the entire server and all other users can no longer send requests to the application. Which of the following best describes the issue?
A. Service quotas
B. API rate limiting
C. Full outage
D. Regional service availability
Correct Answer: B
QUESTION 53
An organization uses a cloud providers specific features to host applications. The organization planned to move to another cloud provider due to rising costs, but moving was not technically feasible. Which of the following best describes this situation?
A. Platform as a service
B. Oversubscription
C. Vendor lock-in
D. Regulatory compliance
Correct Answer: C
QUESTION 54
A cloud engineer needs to enable monitoring on a virtual machine instance within a cloud service provider. The engineer must monitor the resources related to the amount of memory an application is utilizing. Which of the following metrics should the engineer monitor for memory as it relates to disk performance?
A. Heap utilization
B. Swap usage
C. IOPS consumption
D. Queue depth
Correct Answer: B
QUESTION 55
An administrator attempts to use a script to deploy a cloud-based virtual machine with five data disks. After running the script, the administrator sees the following message:
ERROR: Response 403 storage API provisioning error
Which of the following is the reason the deployment failed?
A. Permission issues
B. Partial outage
C. Functionality deprecation
D. Sizing issues
Correct Answer: A
QUESTION 56
Which of the following is the most cost-effective compute service to deploy a service that will be infrequently used but will require fast response times?
A. Virtual machine
B. Container
C. Serverless
D. Edge
Correct Answer: C
QUESTION 57
A cloud administrator needs to distribute workloads across remote data centers for redundancy reasons. Which of the following deployment strategies eliminates downtime, accelerates deployment, and deploys in batches?
A. In-place
B. Rolling
C. Blue-green
D. Canary
Correct Answer: B
QUESTION 58
A cloud developer is creating a static website that customers will be accessing globally. Which of the following services will help reduce latency?
A. VPC
B. Application load balancer
C. CDN
D. API gateway
Correct Answer: C
QUESTION 59
An engineer has an application running in the United States in a cloud environment. This application must be replicated into a United Kingdom cloud environment. When the application is deployed to the United Kingdom environment, there are issues acquiring a virtual machine with a GPU. Which of the following is the most likely reason for this issue?
A. The route tables are misconfigured and cannot connect to virtual machines.
B. The API for creating virtual machines is being throttled.
C. The United Kingdom region has an outage.
D. The United Kingdom region does not have virtual machines that meet the requirements.
E. The United Kingdom region cannot connect to the United States region.
Correct Answer: D
QUESTION 60
A large financial corporation experienced a data breach. An investigation reveals that the attacker infiltrated the firewall via a vulnerability and accessed different servers within the network. Which of the following security controls should the cloud security team implement to prevent future breaches like this one?
A. An MFA solution
B. An IDS
C. A Zero Trust architecture
D. A NAC
Correct Answer: C
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.