312-40 무료 덤프문제 온라인 액세스

Dave Allen works as a cloud security engineer in an IT company located in Baltimore, Maryland. His organization uses cloud-based services; it also uses the Network Watcher regional service to monitor and diagnose problems at the network level. It contains network diagnostic and visualization tools that help in understanding, diagnosing, and obtaining visibility into the network in a cloud environment. This service helped Dave in detecting network vulnerabilities, monitoring network performance, and ensuring secure cloud operations. Which of the following cloud service providers offers the Network Watcher service?

• A.Azure
• B.IBM
• C.AWS
• D.Google

Georgia Lyman works as a cloud security engineer in a multinational company. Her organization uses cloud-based services. Its virtualized networks and associated virtualized resources encountered certain capacity limitations that affected the data transfer performance and virtual server communication. How can Georgia eliminate the data transfer capacity thresholds imposed on a virtual server by its virtualized environment?

• A.By restricting the virtual appliance to bypass the hypervisor and access the I/O card of the physical server directly
• B.By allowing the virtual appliance to bypass the hypervisor and access the I/O card of the physical server directly
• C.By allowing the virtual server to bypass the hypervisor and access the I/O card of the physical server directly
• D.By restricting the virtual server to bypass the hypervisor and access the I/O card of the physical server directly

A large e-commerce company named ShopZone uses GCP to host its online store. Recently, the company noticed several errors reported by customers while trying to make purchases on their website. They suspect that there may be some issue with the payment processing system. To investigate this issue, the cloud forensic team of the company decided to look at the logs for the payment processing system and identify anomalies that may be causing the problem. Which of the following GCP log categories helps the team gain the relevant information?

• A.Security logs
• B.Component Logs
• C.User-written logs
• D.Platform logs

Scott Herman works as a cloud security engineer in an IT company. His organization has deployed a 3-tier web application in the same Google Cloud Virtual Private Cloud. Each tier (web interface (UI), API, and database) is scaled independently of others. Scott Herman obtained a requirement that the network traffic should always access the database using the API and any request coming directly from the web interface to the database should not be allowed. How should Scott configure the network with minimal steps?

• A.By adding tags to each tier and setting up routes to allow the desired traffic flow
• B.By adding tags to each tier and setting up firewall rules to allow the desired traffic flow
• C.By setting up software-based firewalls on individual VMs
• D.By adding each tier to a different subnetwork

An IT company uses two resource groups, named Production-group and Security-group, under the same subscription ID. Under the Production-group, a VM called Ubuntu18 is suspected to be compromised. As a forensic investigator, you need to take a snapshot (ubuntudisksnap) of the OS disk of the suspect virtual machine Ubuntu18 for further investigation and copy the snapshot to a storage account under Security-group.
Identify the next step in the investigation of the security incident in Azure?

• A.Generate shared access signature
• B.Mount the snapshot onto the forensic workstation
• C.Copy the snapshot to file share
• D.Create a backup copy of snapshot in a blob container