Cloud Security Responsibilities Quiz

Questions and Answers

What type of cloud deployment requires the least amount of management by the customer?

Infrastructure as a Service

Platform as a Service

Software as a Service (correct)

On-premises datacenter

What is the cloud customer responsible for in an Infrastructure as a Service (IaaS) deployment?

Physical components such as computers and the network

Operating systems, network controls, applications, and protecting data (correct)

Building, testing, and deploying software applications

Licensing software through a monthly or annual subscription

In which type of cloud deployment is the cloud customer responsible for physical security of the datacenter?

Infrastructure as a Service

Platform as a Service

Software as a Service

On-premises datacenter (correct)

What is the goal of Platform as a Service (PaaS)?

To help the customer quickly create an application without managing the underlying infrastructure

What is the shared responsibility model?

A model that identifies which tasks are handled by the customer and which tasks are handled by the cloud provider

Study Notes

• The shared responsibility model identifies which security tasks are handled by the cloud provider, and which security tasks are handled by you, the customer.
• The responsibilities vary depending on where the workload is hosted: on-premises datacenters, infrastructure as a service, platform as a service, software as a service, and in the cloud.
• In an on-premises datacenter, you have responsibility for everything from physical security to encrypting sensitive data.
• Infrastructure as a Service (IaaS) requires the most management by the cloud customer. With IaaS, you're using the cloud provider’s computing infrastructure. The cloud customer isn't responsible for the physical components, such as computers, the network, or the physical security of the datacenter. However, the cloud customer still has responsibility for software components running on that computing infrastructure such as operating systems, network controls, applications, and protecting data.
• Platform as a Service (PaaS) provides an environment for building, testing, and deploying software applications. The goal of PaaS is to help you create an application quickly without managing the underlying infrastructure. With PaaS, the cloud provider manages the hardware and operating systems, and the customer is responsible for applications and data.
• Software as a Service (SaaS) is hosted and managed by the cloud provider, for the customer. It's usually licensed through a monthly or annual subscription. Microsoft 365, Skype, and Dynamics CRM Online are all examples of SaaS software. SaaS requires the least amount of management by the cloud customer.
• For all cloud deployment types, you, the cloud customer, own your data and identities. You're responsible for protecting the security of your data and identities, and on-premises resources including mobile devices, PCs, printers, and more.

Description

Test your understanding of the shared responsibility model for cloud security. Learn about the varying security tasks handled by the cloud provider and the customer, depending on the deployment type, whether on-premises, infrastructure as a service, platform as a service, or software as a service.