Practice Free CCZT Exam Online Questions
In a ZTA, the logical combination of both the policy engine (PE) and policy administrator (PA) is called
- A . policy decision point (PDP)
- B . role-based access
- C . policy enforcement point (PEP)
- D . data access policy
Which security tools or capabilities can be utilized to automate the response to security events and incidents?
- A . Single packet authorization (SPA)
- B . Security orchestration, automation, and response (SOAR)
- C . Multi-factor authentication (MFA)
- D . Security information and event management (SIEM)
During the monitoring and analytics phase of ZT transaction flows, organizations should collect statistics and profile the behavior of transactions.
What does this support in the ZTA?
- A . Creating firewall policies to protect data in motion
- B . A continuous assessment of all transactions
- C . Feeding transaction logs into a log monitoring engine
- D . The monitoring of relevant data in critical areas
When kicking off ZT planning, what is the first step for an organization in defining priorities?
- A . Determine current state
- B . Define the scope
- C . Define a business case
- D . Identifying the data and assets
Scenario: An organization is conducting a gap analysis as a part of its ZT planning. During which of the following steps will risk appetite be defined?
- A . Create a roadmap
- B . Determine the target state
- C . Determine the current state
- D . Define requirements
How can ZTA planning improve the developer experience?
- A . Streamlining access provisioning to deployment environments.
- B . Require deployments to be grouped into quarterly batches.
- C . Use of a third-party tool for continuous integration/continuous deployment (CI/CD) and deployments.
- D . Disallowing DevOps teams access to the pipeline or deployments.
Which ZT element provides information that providers can use to keep policies dynamically updated?
- A . Communication
- B . Data sources
- C . Identities
- D . Resources
ZT project implementation requires prioritization as part of the overall ZT project planning activities. One area to consider is______ Select the best answer.
- A . prioritization based on risks
- B . prioritization based on budget
- C . prioritization based on management support
- D . prioritization based on milestones
Which activity of the ZT implementation preparation phase ensures the resiliency of the organization’s operations in the event of disruption?
- A . Change management process
- B . Business continuity and disaster recovery
- C . Visibility and analytics
- D . Compliance
SDP incorporates single-packet authorization (SPA). After successful authentication and authorization, what does the client usually do next? Select the best answer.
- A . Generates an SPA packet and sends it to the initiating host.
- B . Generates an SPA packet and sends it to the controller.
- C . Generates an SPA packet and sends it to the accepting host.
- D . Generates an SPA packet and sends it to the gateway.