Crucial Exams

ISC2 Certified Cloud Security Professional (CCSP) Practice Question

Your organization is a SaaS provider hosting its application on a fleet of Linux-based virtual machines in a public cloud. A critical vulnerability in the OS kernel has just been disclosed and a vendor patch is available. To follow sound cloud security hygiene and minimize configuration drift, which action should the provider take first?

  • Push the patch to every production VM immediately, skipping testing to reduce exposure.

  • E-mail customers advising them to apply the patch because guest OS maintenance is their responsibility.

  • Apply a network egress block on the affected VMs and plan to revisit patching during the next regular maintenance window.

  • Update and test the hardened golden image in a staging environment, then redeploy instances from this new baseline.

ISC2 Certified Cloud Security Professional (CCSP)
Cloud Concepts, Architecture and Design
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot