The development team of an e-commerce organization is migrating its code libraries to a public IaaS cloud provider, and the security policy states that source code must use multiple security controls to secure and restrict access. Which of the following combinations of controls would be BEST to meet the requirements?
A. Use directory federation across the organization for all users and biometric access on the developers' laptop instead of VPN.
B. Use VPN and two-factor authentication for the developers to access the online repositories for remote developers.
C. Use SSO across the organization and an existing data loss prevention solution to prevent code repository leakage.
D. Use a third-party CASB solution that sets policies to detect potential compromise of code libraries.
A cloud engineer needs to deploy a new virtual firewall in a private cloud. Which of the following should the engineer do as a FIRST step?
A. Document the deployment in a knowledge base.
B. Create a change for deploying the firewall.
C. Put the hypervisor in maintenance mode.
D. Inform users that the cloud will be momentarily unavailable.
A cloud administrator is securing an application hosted by an IaaS provider. The operating system on the VM has been updated. Which of the following should the administrator use to BEST secure the VM from attacks against vulnerable services regardless of operating system?
A. Firewall
B. Antivirus
C. Intrusion detection
D. Patch management
A company has a requirement of an active/active datacenter and wants to implement synchronous replication for all its storage services. The company is doing a proof of concept with a datacenter provider that has two datacenters 200mi
(322km) apart that utilize MPLS. Each time the company starts synchronous replication, it fails. All network connectivity has been established and is functioning correctly.
Which of the following is the MOST likely cause?
A. Latency between datacenters
B. Applications are latency tolerant
C. Link bandwidth between datacenters
D. Link between datacenters is not fiber
A cloud engineer recently applied the troubleshooting process for a major connectivity issue. Which of the following is the FINAL step in the troubleshooting methodology?
A. Document findings, actions, and outcomes.
B. Establish a plan of action to resolve the problem and implement the solution.
C. Confirm the root cause of the issue.
D. Verify full system functionality and, if applicable, implement preventive measures.
A cloud application has been in production for six months without any issues. Shortly after increasing the number of users assigned to the application, however, users start reporting errors. The administrator does not see any resource thresholds being exceeded in the cloud dashboard. Which of the following is the MOST likely cause of the errors?
A. Failed autoscaling
B. IP address limitations
C. License exhaustion
D. Bandwidth saturation
A cloud administrator runs a maintenance script to remove unused resources. After the maintenance has been performed, users report they can no longer access the application website. The administrator confirms the server is up and responding on the proper ports. Which of the following cleanup actions MOST likely caused the problem?
A. Removing inactive accounts
B. Removing outdated firewall rules
C. Removing stale DNS entries
D. Removing orphaned resources
Given the IaaS cloud service model, at which of the following layers of the platform does microsegmentation BEST apply?
A. Compute
B. Storage
C. Network
D. Management
A healthcare provider determines a Europe-based SaaS electronic medical record system will meet all functional requirements. The healthcare provider plans to sign a contract to use the system starting in the next calendar year. Which of the following should be reviewed prior to signing the contract?
A. Security auditing
B. Storage cost and types
C. Bandwidth utilization
D. Third-party integration
A cloud security analyst performs a vulnerability scan on a web application server across all staging environments. According to the vulnerability scan, the web content featured on the server in the staging environment is located on the C:\ drive, which is the same location housing the operating system.
The analyst determines the results are false positive and submits a report, which includes artifacts supporting the claim to the CAB. Given this scenario, which of the following test plans would be the MOST appropriate to include in the report?
A. Penetration test plan
B. Vulnerability test plan
C. User acceptance test plan
D. Smoke test plan
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CV0-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.