Free Certificate of Competence in Zero Trust Exam CCZT Exam Practice Test

When planning for ZT implementation, who will determine valid users, roles, and privileges for accessing data as part of data governance?

• IT teams
• Application owners
• Asset owners
• Compliance officers

According to NIST, what are the key mechanisms for defining, managing, and enforcing policies in a ZTA?

• Policy decision point (PDP), policy enforcement point (PEP), and policy information point (PIP)
• Data access policy, public key infrastructure (PKI), and identity and access management (IAM)
• Control plane, data plane, and application plane
• Policy engine (PE), policy administrator (PA), and policy broker (PB)

Which of the following is a potential outcome of an effective ZT implementation?

• Regular vulnerability scanning
• A comprehensive catalogue of all transactions, dependencies, and services with associated IDs
• Deployment of traditional firewall solutions
• Adoption of biometric authentication

To successfully implement ZT security, two crucial processes must be planned and aligned with existing access procedures that the ZT implementation might impact. What are these two processes?

• Incident and response management
• Training and awareness programs
• Vulnerability disclosure and patching management
• Business continuity planning (BCP) and disaster recovery (DR)

ZTA utilizes which of the following to improve the network's security posture?

• Micro-segmentation and encryption
• Compliance analytics and network communication
• Network communication and micro-segmentation
• Encryption and compliance analytics

To ensure an acceptable user experience when implementing SDP, a security architect should collaborate with IT to do what?

• Plan to release SDP as part of a single major change or a "big-bang" implementation.
• Model and plan the user experience, client software distribution, and device onboarding processes.
• Build the business case for SDP, based on cost modeling and business value.
• Advise IT stakeholders that the security team will fully manage all aspects of the SDP rollout.

Which of the following is a common activity in the scope, priority, and business case steps of ZT planning?

• Determine the organization's current state
• Prioritize protect surfaces
• O C. Develop a target architecture
• Identify business and service owners

The following list describes the SDP onboarding process/procedure. What is the third step? 1. SDP controllers are brought online first. 2. Accepting hosts are enlisted as SDP gateways that connect to and authenticate with the SDP controller. 3.

• Initiating hosts are then onboarded and authenticated by the SDP gateway
• Clients on the initiating hosts are then onboarded and authenticated by the SDP controller
• SDP gateway is brought online
• Finally, SDP controllers are then brought online

What should an organization's data and asset classification be based on?

• Location of data
• History of data
• Sensitivity of data
• Recovery of data

SDP incorporates single-packet authorization (SPA). After successful authentication and authorization, what does the client usually do next? Select the best answer.

• Generates an SPA packet and sends it to the initiating host.
• Generates an SPA packet and sends it to the controller.
• Generates an SPA packet and sends it to the accepting host.
• Generates an SPA packet and sends it to the gateway.