[Q24-Q44] Pass EC-COUNCIL 312-40 Exam in First Attempt Guaranteed [Nov-2024]

4.3/5 - (3 votes)

Pass EC-COUNCIL 312-40 Exam in First Attempt Guaranteed [Nov-2024]

Exam Sure Pass EC-COUNCIL Certification with 312-40 exam questions

EC-COUNCIL 312-40 Exam Syllabus Topics:

Topic	Details
Topic 1	Forensic Investigation in the Cloud: This topic is related to the forensic investigation process in cloud computing. It includes data collection methods and cloud forensic challenges.
Topic 2	Standards, Policies, and Legal Issues in the Cloud: The topic discusses different legal issues, policies, and standards that are associated with the cloud.
Topic 3	Operation Security in the Cloud: The topic encompasses different security controls which are essential to build, implement, operate, manage, and maintain physical and logical infrastructures for cloud.
Topic 4	Incident Detection and Response in the Cloud: This topic focuses on various aspects of incident response.
Topic 5	Application Security in the Cloud: The focus of this topic is the explanation of secure software development lifecycle changes and the security of cloud applications.

NEW QUESTION 24
Trevor Holmes works as a cloud security engineer in a multinational company. Approximately 7 years ago, his organization migrated its workload and data to the AWS cloud environment. Trevor would like to monitor malicious activities in the cloud environment and protect his organization’s AWS account, data, and workloads from unauthorized access. Which of the following Amazon detection services uses anomaly detection, machine learning, and integrated threat intelligence to identify and classify threats and provide actionable insights that include the affected resources, attacker IP address, and geolocation?

Amazon Inspector

Amazon GuardDuty

Amazon Macie

Amazon Security Hub

NEW QUESTION 25
Rick Warren has been working as a cloud security engineer in an IT company for the past 4 years. Owing to the robust security features and various cost-effective services offered by AWS, in 2010, his organization migrated to the AWS cloud environment. While inspecting the intrusion detection system, Rick detected a security incident. Which of the following AWS services collects logs from various data sources and stores them on a centralized location as logs files that can be used during forensic investigation in the event of a security incident?

Amazon CloudWatch

AWS CloudFormation

Amazon CloudFront

Amazon CloudTrail

NEW QUESTION 26
AWS runs 35+ instances that are all CentOS machines. Updating these machines manually is a time-intensive task that may lead to missed updates for some instances and create vulnerabilities. Which of the following can be used to prevent each port of each instance from being opened to access the machine and install updates?

AWS Security Hub

AWS Systems Manager

Amazon Glacier

Amazon Snowball

NEW QUESTION 27
Sandra, who works for SecAppSol Technologies, is on a vacation. Her boss asked her to solve an urgent issue in an application. Sandra had to use applications present on her office laptop to solve this issue, and she successfully rectified it. Despite being in a different location, she could securely use the application. What type of service did the organization use to ensure that Sandra could access her office laptop from a remote area?

Amazon AppStream 2.0

Amazon Elastic Transcoder Service

Amazon SQS

Amazon Simple Workflow

NEW QUESTION 28
Brentech Services allows its clients to access (read, write, or delete) Google Cloud Storage resources for a limited time without a Google account while it controls access to Cloud Storage. How does the organization accomplish this?

Using BigQuery column-level security

Using Signed Documents

Using Signed URLs

Using BigQuery row-level-security

NEW QUESTION 29
Bruce McFee works as a cloud security engineer in an IT company. His organization uses AWS cloud-based services. Because Amazon CloudFront offers low-latency and high-speed data delivery through a user-friendly environment, Bruce’s organization uses the CloudFront content delivery network (CDN) web service for the fast and secure distribution of data to various customers throughout the world. How does CloudFront accelerate content distribution?

By sending the requests of end users to the nearest edge locations

By restricting the requests of end users from the nearest edge locations

By routing the requests of end users to the original source

By forwarding the requests of end users to the original source

NEW QUESTION 30
Richard Branson works as a senior cloud security engineer in a multinational company. Owing to the cost-effective security features and services provided by cloud computing, his organization uses cloud-based services. Richard deliberately wants to cause problems in an application/software system deployed in the production environment as a part of the testing strategy and analyze how the application/software system deals with the disruption, detects vulnerabilities, and fixes them. Which of the following refers to the process of experimenting on a software system that is deployed in production to check the system’s capability to withstand sudden and unexpected conditions?

Chaos Engineering

Social Engineering

Site Reliability Engineering

Quick-Fix Engineering

NEW QUESTION 31
A BPO company would like to expand its business and provide 24 x 7 customer service. Therefore, the organization wants to migrate to a fully functional cloud environment that provides all features with minimum maintenance and administration. Which cloud service model should it consider?

laaS

PaaS

RaaS

SaaS

NEW QUESTION 32
An organization with resources on Google Cloud regularly backs up its service capabilities to ensure high availability and reduce the downtime when a zone or instance becomes unavailable owing to zonal outage or memory shortage in an instance. However, as protocol, the organization must frequently test whether these regular backups are configured. Which tool’s high availability settings must be checked for this?

MySQL Database

Always on Availability Groups (AGs)

SQL Server Database Mirroring (DBM)

Google Cloud SQL

NEW QUESTION 33
Being a cloud security administrator, Jonathan is responsible for securing the large-scale cloud infrastructure of his organization SpectrumIT Solutions. The organization has to implement a threat detection and analysis system so that Jonathan would receive alerts regarding all misconfigurations and network intrusions in the organization’s cloud infrastructure. Which AWS service would enable him to use to receive alerts related to risks?

Amazon SQS

Amazon VPC

Amazon SNS

Amazon GuardDuty

NEW QUESTION 34
Stephen Cyrus has been working as a cloud security engineer in an MNC over the past 7 years. The database administration team requested Stephen to configure a server instance that can enhance the performance of their new database server running on Compute Engine. The database is built on MySQL running on Debian Linux and it is used to import and normalize the company’s performance statistics. They have an n2-standard-8 virtual machine with 80 GB of SSD zonal persistent disk, which cannot be restarted until the next maintenance event. Which of the following can help Stephen to enhance the performance of this VM quickly and in a cost-effective manner?

Dynamically resize the SSD persistent disk to 500 GB

Enhance the VM memory to 60 GB

Migrate their performance metrics warehouse to BigQuery

Create a new VM that runs on PostgreSQL

NEW QUESTION 35
Veronica Lauren has an experience of 4 years as a cloud security engineer. Recently, she joined an IT company as a senior cloud security engineer. In 2010, her organization became a victim of a cybersecurity attack in which the attacker breached her organization’s cloud security perimeter and stole sensitive information. Since then, her organization started using Google cloud-based services and migrated the organizational workload and data in the Google cloud environment. Veronica would like to detect security breaches in her organization’s cloud security perimeter. Which of the following built-in service of Google Security Command Center can help Veronica in monitoring her organization’s cloud logging stream and collect logs from one or multiple projects to detect security breaches such as the presence of malware, brute force SSH attempts, and cryptomining?

Event Threat Detection

Web Security Scanner

Container Threat Detection

Security Health Analytics

NEW QUESTION 36
Jack Jensen works as a cloud security engineer in an IT company located in Madison, Wisconsin. Owing to the various security services provided by Google, in 2012, his organization adopted Google cloud-based services.
Jack would like to identify security abnormalities to secure his organizational data and workload. Which of the following is a built-in feature in the Security Command Center that utilizes behavioral signals to detect security abnormalities such as unusual activity and leaked credentials in virtual machines or GCP projects?

Anomaly Detector

Security Health Analytics

Cloud Armor

Cloud Anomaly Detection

NEW QUESTION 37
SecureSoft IT Pvt. Ltd. is an IT company located in Charlotte, North Carolina, that develops software for the healthcare industry. The organization generates a tremendous amount of unorganized data such as video and audio files. Kurt recently joined SecureSoft IT Pvt. Ltd. as a cloud security engineer. He manages the organizational data using NoSQL databases. Based on the given information, which of the following data are being generated by Kurt’s organization?

Metadata

Structured Data

Unstructured Data

Semi-Structured Data

NEW QUESTION 38
The TCK Bank adopts cloud for storing the private data of its customers. The bank usually explains its information sharing practices to its customers and safeguards sensitive data. However, there exist some security loopholes in its information sharing practices. Therefore, hackers could steal the critical data of the bank’s customers. In this situation, under which cloud compliance framework will the bank be penalized?

GLBA

ITAR

NIST

GDPR

NEW QUESTION 39
Georgia Lyman is a cloud security engineer; she wants to detect unusual activities in her organizational Azure account. For this, she wants to create alerts for unauthorized activities with their severity level to prioritize the alert that should be investigated first. Which Azure service can help her in detecting the severity and creating alerts?

Windows Defender

Cloud Operations Suite

Microsoft Defender for Cloud

Cloud DLP

NEW QUESTION 40
SecAppSol Pvt. Ltd. is a cloud software and application development company located in Louisville, Kentucky. The security features provided by its previous cloud service provider was not satisfactory, and in
2012, the organization became a victim of eavesdropping. Therefore, SecAppSol Pvt. Ltd. changed its cloud service provider and adopted AWS cloud-based services owing to its robust and cost-effective security features. How does SecAppSol Pvt. Ltd.’s security team encrypt the traffic between the load balancer and client that initiate SSL or TLS sessions?

By enabling Amazon GuardDuty

By enabling HTTPS listener

By enabling Cloud Identity Aware Proxy

By enabling RADIUS Authentication

NEW QUESTION 41
An organization is developing a new AWS multitier web application with complex queries and table joins.
However, because the organization is small with limited staff, it requires high availability. Which of the following Amazon services is suitable for the requirements of the organization?

Amazon HSM

Amazon Snowball

Amazon Glacier

Amazon DynamoDB

NEW QUESTION 42
Martin Sheen is a senior cloud security engineer in SecGlob Cloud Pvt. Ltd. Since 2012, his organization has been using AWS cloud-based services. Using an intrusion detection system and antivirus software, Martin noticed that an attacker is trying to breach the security of his organization. Therefore, Martin would like to identify and protect the sensitive data of his organization. He requires a fully managed data security service that supports S3 storage and provides an inventory of publicly shared buckets, unencrypted buckets, and the buckets shared with AWS accounts outside his organization. Which of the following Amazon services fulfills Martin’s requirement?

Amazon GuardDuty

Amazon Macie

Amazon Inspector

Amazon Security Hub

NEW QUESTION 43
Rebecca Gibel has been working as a cloud security engineer in an IT company for the past 5 years. Her organization uses cloud-based services. Rebecca’s organization contains personal information about its clients,which is encrypted and stored in the cloud environment. The CEO of her organization has asked Rebecca to delete the personal information of all clients who utilized their services between 2011 and 2015.
Rebecca deleted the encryption keys that are used to encrypt the original data; this made the data unreadable and unrecoverable. Based on the given information, which deletion method was implemented by Rebecca?

Data Scrubbing

Nulling Out

Data Erasure

Crypto-Shredding

NEW QUESTION 44
Terry Diab has an experience of 6 years as a cloud security engineer. She recently joined a multinational company as a senior cloud security engineer. Terry learned that there is a high probability that her organizational applications could be hacked and user data such as passwords, usernames, and account information can be exploited by an attacker. The organizational applications have not yet been hacked, but this issue requires urgent action. Therefore, Terry, along with her team, released a software update that is designed to resolve this problem instantly with a quick-release procedure. Terry successfully fixed the problem (bug) in the software product immediately without following the normal quality assurance procedures. Terry’s team resolved the problem immediately on the live system with zero downtime for users. Based on the given information, which of the following type of update was implemented by Terry?

Patch

Rollback

Hotfix

Version update