New Year Special Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: mxmas70

Home > Checkpoint > CCCS > 156-560

156-560 Check Point Certified Cloud Specialist (CCCS) Question and Answers

Question # 4

Which Security Gateway function inspects cloud applications and workload resources for malicious activity?

A.

Application Control

B.

Threat Prevention

C.

Identity Awareness

D.

Access Control

Full Access
Question # 5

What platform provides continuous compliance and governance assessments that evaluate public infrastructure according to industry to industry standards and best practices?

A.

Cloud Security Posture Management

B.

CloudGuard laaS Public Cloud

C.

CloudGuard SaaS

D.

CloudGuard laaS Private Cloud

Full Access
Question # 6

Which solution delivers a software platform for public cloud security and compliance orchestration?

A.

CloudGuard Network Public

B.

CloudGuard Network Private

C.

CloudGuard SaaS

D.

Cloud Security Posture Management

Full Access
Question # 7

How many AWS Internet gateways can you define in AWS?

A.

Two per VPC

B.

Unlimited

C.

One per VPC

D.

One per Region

Full Access
Question # 8

Which of the following is a common limitation of cloud platforms?

A.

Network address translations

B.

Custom Route Tables

C.

Identity and Access Management

D.

Packet Forwarding

Full Access
Question # 9

After the cloud acquisition process finishes. Cloud Security Posture Security module secures access to cloud environments by performing controls access to cloud environments by performing the following tasks: Visualizes Security Policies in cloud environments, control access to protected cloud assets with short-term dynamic access leases, and______________.

A.

Automatically Installs Policies

B.

Deploys new management resources

C.

Manages Network Security Groups

D.

Deploys new internal cloud resources

Full Access
Question # 10

When Cloud Security Posture Management discovers non- compliant cloud resources, CloudBot applications perform automated remediation’s to correct any violations. How true is this statement?

A.

This is true, however it requires Full Protection access to the Cloud Account to perform automated remediation

B.

This is not true, Cloud Security Posture Management (CSPIU) can only report non-compliance and cannot remediate by itself

C.

This is partially true, however the automated remediation is not done by CloudBot applications but it is done by the Security Management Server

D.

This is not true because CloudBot applications are used to provide chat service to respond to non-compliance alerts

Full Access
Question # 11

A utility that allows integration between SMS, the CloudGuard Network Solution, and CSPs, allowing the SMS to monitor and control scaling solutions in their associated cloud environments is called

A.

CloudGuard Management Extension (CME)

B.

CloudGuard Controller and Enforcer (CCE)

C.

CloudGuard Scanner and Enforcer (CSE)

D.

CloudGuard Controller (CC)

Full Access
Question # 12

How does micro-segmentation create boundaries and provide network segmentation for CloudGuard?

A.

It creates borders within the cloud's perimeter to protect the major inbound and outbound traffic intersections.

B.

Micro-segmentation does not create boundaries.

C.

It applies a Security Gateway that enforces firewall policies to accept legitimate network traffic flows and deny unauthorized traffic

D.

It places inspection points between different applications, services, and single hosts within the same network segment.

Full Access