CSA Exam CCSK Topic 4 Question 86 Discussion

Actual exam question for CSA's CCSK exam

Question #: 86
Topic #: 4

[All CCSK Questions]

Which of the following best describes an aspect of PaaS services in relation to network security controls within a cloud environment?

AThey override the VNet/VPC's network security controls by default

BThey do not interact with the VNet/VPC's network security controls

CThey require manual configuration of network security controls, separate from the VNet/VPC

DThey often inherit the network security controls of the underlying VNet/VPC

Show Suggested Answer

Suggested Answer: D

In a Platform as a Service (PaaS) environment, the network security controls of the underlying Virtual Network (VNet) or Virtual Private Cloud (VPC) are often inherited by the PaaS services. This means that the network security settings, such as firewalls, security groups, and access control lists (ACLs), that are applied to the VNet/VPC also extend to the PaaS services, providing a seamless security model.

While PaaS services abstract much of the infrastructure management, they still interact with the network security controls in the VNet/VPC, allowing for centralized management of network security.

PaaS services typically do not override network security controls; they integrate with them. They do interact with VNet/VPC security controls, often integrate with network security controls, and do not always require separate manual configuration.

by Latrice at Mar 21, 2025, 12:43 PM

Limited Time Offer

25%

1 months ago

Option D seems like the most logical choice. PaaS services should take advantage of the underlying VNet/VPC's network security controls to ensure consistent and secure connectivity.

upvoted 0 times