Courses and Certificates Managing-Cloud-Security Reddit Questions

WGU Managing Cloud Security (JY02, GZO1) Questions and Answers

Question 21

Which security testing method requires compliance with the cloud service provider’s terms of service?

Options:

Vulnerability assessment

Continuous delivery pipeline

Static analysis

Code review

Answer:

Explanation:

A vulnerability assessment requires compliance with the cloud service provider’s terms of service. Managing Cloud documentation explains that vulnerability scanning and testing can affect cloud infrastructure and other tenants if not properly authorized.

CSPs define acceptable testing activities to protect shared environments. Customers must follow these guidelines to avoid violating contracts or causing service disruptions. Many CSPs require prior notification or explicit permission before conducting vulnerability assessments.

The other methods involve internal development processes and do not impact cloud infrastructure directly. Therefore, vulnerability assessment is the correct answer.

Question 22

Which business area in the enterprise risk management (ERM) strategy is concerned with formal risk assessments when forming new or renewing existing vendor relationships?

Options:

Software development

Procurement

Quality assurance

Marketing

Answer:

Explanation:

The procurement function is directly responsible for vendor selection and contract management, including risk assessments of new or renewed vendor relationships. This ensures that third-party providers meet security, compliance, and performance requirements.

Software development and quality assurance focus on product creation and validation. Marketing manages branding and outreach. None of these directly involve evaluating external vendor risk.

Procurement integrates due diligence, contract clauses, and performance monitoring into enterprise risk management. This reduces exposure to third-party threats and ensures compliance with frameworks such as ISO 27036 (supplier relationships) and NIST vendor risk management guidelines.

Question 23

Which security control is a countermeasure against vendor lock-in and lock-out?

Options:

Offsite backups

Video surveillance

Disk redundancy

Training programs

Answer:

Explanation:

Offsite backups are an effective countermeasure against vendor lock-in and lock-out risks. Managing Cloud principles explain that maintaining copies of data outside a single cloud provider reduces dependency and ensures continued access if services become unavailable.

Offsite backups enable organizations to migrate data, recover from provider outages, or exit a provider relationship without losing critical information. This control supports business continuity, portability, and resilience.

Video surveillance addresses physical security, disk redundancy improves availability within the same provider, and training programs improve awareness but do not reduce dependency. Therefore, offsite backups are the correct security control.

Question 24

Which strategy will reduce the impact of risk in the business continuity and disaster recovery planning process?

Options:

Insurance

Avoidance

Mitigation

Acceptance

Answer:

Explanation:

Risk mitigation reduces the impact of risk within BCDR planning. Managing Cloud principles explain that mitigation involves implementing controls and safeguards to lessen the likelihood or severity of adverse events.

Examples include redundancy, backups, failover mechanisms, and monitoring. These measures do not eliminate risk but significantly reduce operational disruption and data loss when incidents occur.

Insurance transfers financial risk, avoidance eliminates activities, and acceptance acknowledges risk without action. Therefore, mitigation is the correct strategy for reducing impact.

PDF Managing-Cloud-Security Study Guide
Managing-Cloud-Security WGU Exam Lab Questions
Courses and Certificates Managing-Cloud-Security Updated Exam
Ace Your Managing-Cloud-Security Courses and Certificates Exam
Courses and Certificates Managing-Cloud-Security Reddit Questions
Free Managing-Cloud-Security Questions Attempt
Managing-Cloud-Security Exam Results
Courses and Certificates Managing-Cloud-Security Passing Score
Managing-Cloud-Security Exam Questions Tutorials
All Managing-Cloud-Security Test Inside WGU Questions
Selected Managing-Cloud-Security Courses and Certificates Questions Answers
Free Managing-Cloud-Security WGU Updates
Courses and Certificates Managing-Cloud-Security Book
Download Full Version Managing-Cloud-Security WGU Exam
Get More WGU Exams Free Access

Spring Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Courses and Certificates Managing-Cloud-Security Reddit Questions

WGU Managing Cloud Security (JY02, GZO1) Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce