A company is designing their service catalog. They plan to manage access to offered services based on the job functions of their consumers. What is this an example of?
A. Role-based access control
B. Single sign-on
C. Security profiles
D. Resource monitoring
An organization wants to use a public cloud provider for IaaS instances. They will develop and deploy their own applications within these instances. The organization must follow health care compliance regulations.
What should the organization ensure before deploying their applications in the public cloud?
A. Instances will not be placed in more than one availability zone
B. Auditors have access to the cloud provider's data encryption keys
C. Cloud provider supplies data-in-transit encryption capabilities
D. Cloud provider supplies proper controls and audits for compliance requirements
What key features do Web Scale infrastructure and applications share that contribute to their success?
A. Intelligent hyper-optimized applications, clustered architecture, low OPEX, and HA design
B. HA design, distributed architecture, low OPEX, and design for failure
C. Clustered architecture, design for failure, HA design, and intelligent hyper-optimized applications
D. Design for failure, intelligent hyper-optimized applications, distributed architecture, and low OPEX
A company plans to offer BI, CDN, and backup services. According to NIST, which cloud service models correspond to these offerings?
A. BI: IaaS; CDN: IaaS; backup: PaaS
B. BI: PaaS; CDN: IaaS; backup: IaaS
C. BI: IaaS; CDN: SaaS; backup: PaaS
D. BI: PaaS; CDN: SaaS; backup: IaaS
An IT organization is transitioning to cloud services to support an ITaaS model. The CIO has informed their directors that IT must be managed like a business. What must IT do to meet this strategic goal?
A. Complete with the lines of business for company profits
B. Complete with offerings from cloud providers
C. Contribute to the company by becoming a cost center
D. Become the single source for cloud services
A company plans to offer CRM, CDN, and ERP services. According to NIST, which services categories correspond to these offerings?
A. CRM: PaaS; CDN: PaaS; ERP: IaaS
B. CRM: IaaS; CDN: IaaS; ERP: SaaS
C. CRM: IaaS; CDN: SaaS; ERP: PaaS
D. CRM: SaaS; CDN: IaaS; ERP: SaaS
A line of business (LOB) has been using a public cloud and is seeking services from the internal IT department. The LOB has requested an SLA for each service. Why would the LOB make this request?
A. Need for a clear description of services, capabilities, key performance indicators, support responsibilities and warranties
B. Need to understand what template is included with the service, the catalog entry for the service, and the associated dependencies and policies
C. Need to understand the availability, throughput, frequency, and response time capabilities for the underlying infrastructure components
D. Need for a clear description of terms and conditions for using the services of the IT cloud before actually using the services
Which IT Governance principle should cloud services adhere to?
A. Asset valuation
B. Data classification
C. Strategic alignment
D. Risk profiling
An IT organization within a healthcare company has embarked on a strategic transformation by adopting the IT Value Transformation road map. They have been successful in bringing out several IT services by adopting cloud computing. These services have helped the company release new products quickly into the market. However, the IT organization is still perceived internally as a cost center.
What is the IT organization neglecting?
A. Seeking more business opportunities for IT services
B. Reducing the cost of IT services even more
C. Linking IT spending to specific business outcomes
D. Improving the utilization of compute, network, and storage resources.
An organization wants to use a public cloud provider for IaaS instances. They will develop and deploy their own applications within these instances. The organization must follow health care compliance regulations.
What should the organization ensure before deploying their applications in the public cloud?
A. Party responsible for encrypting data has been clearly defined.
B. Cloud provider will provide access to the application logs for auditing
C. Instances will not be places in more than one availability zone.
D. Cloud provider's external auditor has access to the data encryption keys.