Crucial Exams

ISC2 Certified Cloud Security Professional (CCSP) Practice Question

A development team deploys containerized microservices to a managed Kubernetes cluster in the public cloud. Their CI/CD pipeline already runs static code analysis in the build stage and dynamic application security testing in the staging environment. After a recent incident caused by a vulnerable open-source component, management asks for earlier detection of third-party library flaws and license violations without waiting for the code to be executed. Which additional assurance technique should be added earliest in the pipeline to meet this requirement?

  • Attach an Interactive Application Security Testing agent to the staging environment.

  • Schedule quarterly external penetration tests after production release.

  • Introduce Software Composition Analysis to scan dependency manifests during the build phase.

  • Apply Kubernetes pod security policies to restrict container capabilities at runtime.

ISC2 Certified Cloud Security Professional (CCSP)
Cloud Application Security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot