The cloud administrator John was assigned a task to create a different subscription for each division of his organization. He has to ensure all the subscriptions are linked to a single Azure AD tenant and each subscription has identical role assignments. Which Azure service will he make use of?

Azure AD Privileged Identity Management

Azure AD Multi-Factor Authentication

Azure AD Self-Service Password Reset

Scott Herman works as a cloud security engineer in an IT company. His organization has deployed a 3-tier web application in the same Google Cloud Virtual Private Cloud. Each tier (web interface (UI), API, and database) is scaled independently of others. Scott Herman obtained a requirement that the network traffic should always access the database using the API and any request coming directly from the web interface to the database should not be allowed. How should Scott configure the network with minimal steps?

By adding tags to each tier and setting up firewall rules to allow the desired traffic flow

By adding tags to each tier and setting up routes to allow the desired traffic flow

By setting up software-based firewalls on individual VMs

By adding each tier to a different subnetwork

Sandra, who works for SecAppSol Technologies, is on a vacation. Her boss asked her to solve an urgent issue in an application. Sandra had to use applications present on her office laptop to solve this issue, and she successfully rectified it. Despite being in a different location, she could securely use the application. What type of service did the organization use to ensure that Sandra could access her office laptop from a remote area?

Amazon Elastic Transcoder Service

Scott Herman works as a cloud security engineer in an IT company. His organization has deployed a 3-tier web application in the same Google Cloud Virtual Private Cloud. Each tier (web interface (UI), API, and database) is scaled independently of others. Scott Herman obtained a requirement that the network traffic should always access the database using the API and any request coming directly from the web interface to the database should not be allowed. How should Scott configure the network with minimal steps?

By adding tags to each tier and setting up firewall rules to allow the desired traffic flow

By adding tags to each tier and setting up routes to allow the desired traffic flow

By setting up software-based firewalls on individual VMs

By adding each tier to a different subnetwork

The tech giant TSC uses cloud for its operations. As a cloud user, it should implement an effective risk management lifecycle to measure and monitor high and critical risks regularly. Additionally, TSC should define what exactly should be measured and the acceptable variance to ensure timely mitigated risks. In this case, which of the following can be used as a tool for cloud risk management?

Information System Audit and Control Association

Committee of Sponsoring Organizations

Ewan McGregor works as a cloud security engineer in a multinational company that develops software and applications for eCommerce companies. Owing to the robust services provided by AWS for developing applications and software, his organization migrated to the AWS cloud in 2010. To test whether it is possible to escalate privileges to obtain AWS administrator account access, Ewan attempt to update the login profile with regular user accounts. Which of the following commands should Ewan try to update an existing login profile?

aws iam update-login-profile -- user-name < username > -- password < password >

aws iam update-login-profile -- user-name < password > -- password < username >

aws iam update-login-profile -- user-name < username > -- password < password >

aws iam update-login-profile -- user-name < password > -- password < username >

aws iam update-login-profile -- password < password > -- user-name < username >

Global CyberSec Pvt. Ltd. is an IT company that provides software and application services related to cybersecurity. Owing to the robust security features offered by Microsoft Azure, the organization adopted the Azure cloud environment. A security incident was detected on the Azure cloud platform. Global CyberSec Pvt. Ltd.'s security team examined the log data collected from various sources. They found that the VM was affected. In this scenario, when should the backup copy of the snapshot be taken in a blob container as a page blob during the forensic acquisition of the compromised Azure VM?

Before mounting the snapshot onto the forensic workstation

After deleting the snapshot from the source resource group

Before mounting the snapshot onto the forensic workstation

After mounting the snapshot onto the forensic workstation

Before deleting the snapshot from the source resource group

You are the manager of a cloud-based security platform that offers critical services to government agencies and private companies. One morning, your team receives an alert from the platform's intrusion detection system indicating that there has been a potential breach in the system. As the manager, which tool you will use for viewing and monitoring the sensitive data by scanning storage systems and reviewing the access rights to critical resources via a single centralized dashboard?

Google Cloud Security Command Center

Cloud Identity and Access Management (IAM)

An organization, PARADIGM PlayStation, moved its infrastructure to a cloud as a security practice. It established an incident response team to monitor the hosted websites for security issues. While examining network access logs using SIEM, the incident response team came across some incidents that suggested that one of their websites was targeted by attackers and they successfully performed an SQL injection attack.Subsequently, the incident response team made the website and database server offline. In which of the following steps of the incident response lifecycle, the incident team determined to make that decision?

Coordination and information sharing

Ray Nicholson works as a senior cloud security engineer in TerraCloud Sec Pvt. Ltd. His organization deployed all applications in a cloud environment in various virtual machines. Using IDS, Ray identified that an attacker compromised a particular VM. He would like to limit the scope of the incident and protect other resources in the cloud. If Ray turns off the VM, what will happen?

The data required to be investigated will be lost

The data required to be investigated will be recovered

The data required to be investigated will be stored in the VHD

The data required to be investigated will be saved

An IT company uses two resource groups, named Production-group and Security-group, under the same subscription ID. Under the Production-group, a VM called Ubuntu18 is suspected to be compromised. As a forensic investigator, you need to take a snapshot (ubuntudisksnap) of the OS disk of the suspect virtual machine Ubuntu18 for further investigation and copy the snapshot to a storage account under Security-group.Identify the next step in the investigation of the security incident in Azure?

Generate shared access signature

Copy the snapshot to file share

Generate shared access signature

Create a backup copy of snapshot in a blob container

Mount the snapshot onto the forensic workstation

Brentech Services allows its clients to access (read, write, or delete) Google Cloud Storage resources for a limited time without a Google account while it controls access to Cloud Storage. How does the organization accomplish this?

Using BigQuery column-level security

Using BigQuery row-level-security

An organization with resources on Google Cloud regularly backs up its service capabilities to ensure high availability and reduce the downtime when a zone or instance becomes unavailable owing to zonal outage or memory shortage in an instance. However, as protocol, the organization must frequently test whether these regular backups are configured. Which tool's high availability settings must be checked for this?

Always on Availability Groups (AGs)

SQL Server Database Mirroring (DBM)

Shannon Elizabeth works as a cloud security engineer in VicPro Soft Pvt. Ltd. Microsoft Azure provides all cloud-based services to her organization. Shannon created a resource group (ProdRes), and then created a virtual machine (myprodvm) in the resource group. On myprodvm virtual machine, she enabled JIT from the Azure Security Center dashboard. What will happen when Shannon enables JIT VM access?

It locks down the inbound traffic to myprodvm by creating a rule in the Azure firewall

It locks down the inbound traffic from myprodvm by creating a rule in the network security group

It locks down the inbound traffic to myprodvm by creating a rule in the Azure firewall

It locks down the outbound traffic from myprodvm by creating a rule in the network security group

It locks down the outbound traffic to myprodvm by creating a rule in the Azure firewall

William O'Neil works as a cloud security engineer in an IT company located in Tampa, Florida. To create an access key with normal user accounts, he would like to test whether it is possible to escalate privileges to obtain AWS administrator account access. Which of the following commands should William try to create a new user access key ID and secret key for a user?

aws iam create-access-key -user-name target_user

aws iam target_user -user-name create-access-key

aws iam create-access-key -user-name target_user

aws iam create-access-key target_user -user-name

aws iam -user-name target_user create-access-key

ECCouncil 312-40 Practice Test 1 - Free Online Exam Questions 1-40

Question 1 / 40

A security incident has occurred within an organization's AWS environment. A cloud forensic investigation procedure is initiated for the acquisition of forensic evidence from the compromised EC2 instances. However, it is essential to abide by the data privacy laws while provisioning any forensic instance and sending it for analysis. What can the organization do initially to avoid the legal implications of moving data between two AWS regions for analysis?

Create evidence volume from the snapshot

Provision and launch a forensic workstation

Mount the evidence volume on the forensic workstation

Attach the evidence volume to the forensic workstation

Comment (0)

ECCouncil 312-40 Practice Test 1

Question

ECCouncil 312-40 Practice Tests

Practice Tests