GDSA 試験問題を無料オンラインアクセス

Your organization is planning to migrate several critical applications to a public cloud provider. You are tasked with ensuring security during and after the migration. What immediate steps should you take to secure the cloud-based infrastructure and protect your organization's data?
Response:

• A.Establish Identity and Access Management (IAM) policies and enable encryption for all data
• B.Rely on the cloud provider to secure the infrastructure entirely
• C.Focus only on encrypting data at rest, and leave IAM configuration for later
• D.Disable multi-factor authentication to simplify access for employees

Which protocol is often targeted in Layer 3 attacks due to its use in time synchronization across networks?
Response:

• A.SMTP
• B.HTTP
• C.NTP
• D.SNMP

Zero Trust Networking automatically trusts any user or device within the network.
Response:

• A.False
• B.True

Your organization has recently deployed a new web application for processing sensitive customer data. After a thorough assessment, you decide to implement both a Web Application Firewall (WAF) and a database activity monitoring (DAM) system to enhance security.
What specific security risks will these solutions address, and how will they work together to protect the organization's data?
Response:

• A.The WAF will focus on protecting the server hardware, while the DAM will secure physical access to data centers
• B.The WAF will protect the internal network from malware, and the DAM will act as a backup system for databases
• C.The WAF will protect against common web attacks like SQL injection, while the DAM will monitor database access and block malicious queries in real time
• D.The WAF will encrypt all data at rest, while the DAM will block unauthorized user logins

Which of the following are considered essential features of cloud-based security architecture?
(Select all that apply)
Response:

• A.Identity and access management (IAM)
• B.Encryption of data at rest and in transit
• C.Physical security measures
• D.Distributed Denial of Service (DDoS) mitigation