exam questions

Exam CCSK All Questions

View all questions & answers for the CCSK exam

Exam CCSK topic 1 question 56 discussion

Actual exam question from CSA's CCSK
Question #: 56
Topic #: 1
[All CCSK Questions]

In which type of environment is it impractical to allow the customer to conduct their own audit, making it important that the data center operators are required to provide auditing for the customers?

  • A. Multi-application, single tenant environments
  • B. Long distance relationships
  • C. Multi-tenant environments
  • D. Distributed computing arrangements
  • E. Single tenant environments
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
saptati
5 months ago
C is correct. Customers should understand that providers can (and often should) consider on-premises audits a security risk when providing multitenant services. Multiple on-premises audits from large numbers of customers present clear logistical and security challenges, especially when the provider relies on shared assets to create the resource pools. Ref: Security-Guidance-v4.0, Pg 57-58.
upvoted 2 times
...
Brainiac
7 months ago
The type of environment in which it is impractical to allow the customer to conduct their own audit, making it important for data center operators to provide auditing for the customers is: C. Multi-tenant environments In multi-tenant environments, multiple customers or tenants share the same physical infrastructure, such as servers, storage, and networking resources, provided by the cloud service provider. Due to the shared nature of the infrastructure, it can be challenging or impractical for individual customers to conduct their own audits of the underlying infrastructure. In such environments, data center operators play a crucial role in ensuring the security and compliance of the infrastructure. They are responsible for implementing appropriate security measures, maintaining regulatory compliance, and providing auditing capabilities to meet the requirements of different customers. The data center operators are expected to have robust auditing processes in place, allowing customers to verify the security controls and compliance measures implemented within the multi-tenant environment.
upvoted 2 times
...
odisor
7 months, 2 weeks ago
C- In multi-tenant environments, multiple customers or organizations share the same infrastructure and resources provided by the data center operators. In such a scenario, it can be impractical or infeasible for each customer to conduct their own audit of the infrastructure and security measures. Due to the shared nature of the environment, allowing individual customer audits may disrupt the operations and compromise the privacy and security of other tenants' data.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago