CSA Exam CCZT Topic 3 Question 14 Discussion

Actual exam question for CSA's CCZT exam

Question #: 14
Topic #: 3

[All CCZT Questions]

Which approach to ZTA strongly emphasizes proper governance of

access privileges and entitlements for specific assets?

AZTA using device application sandboxing

BZTA using enhanced identity governance

CZTA using micro-segmentation

DZTA using network infrastructure and SDPs
ZTA using enhanced identity governance is an approach to ZTA that strongly emphasizes proper governance of access privileges and entitlements for specific assets. This approach focuses on managing the identity lifecycle, enforcing granular and dynamic policies, and auditing and monitoring access activities. ZTA using enhanced identity governance helps to ensure that only authorized and verified entities can access the protected assets based on the principle of least privilege and the context of the request.
Reference=Certificate of Competence in Zero Trust (CCZT) - Cloud Security Alliance,Zero Trust Training (ZTT) - Module 5: Enhanced Identity Governance

Show Suggested Answer

Suggested Answer: B

To ensure an acceptable user experience when implementing SDP, a security architect should collaborate with IT to model and plan the user experience, client software distribution, and device onboarding processes. This is because SDP requires users to install and use client software to access the protected resources, and the user experience may vary depending on the device type, operating system, network conditions, and security policies. By modeling and planning the user experience, the security architect and IT can ensure that the SDP implementation is user-friendly, consistent, and secure.

Reference=Certificate of Competence in Zero Trust (CCZT) - Cloud Security Alliance,Zero Trust Training (ZTT) - Module 7: Network Infrastructure and SDP

by Bulah at Apr 26, 2024, 06:22 PM

Limited Time Offer

25%

Off

Get Premium CCZT Questions as Interactive Web-Based Practice Test or PDF