Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Free Resources

Difficulty IndexLearn — Free ChaptersIT GlossaryFree Tools & LabsStudy GuidesCareer RoadmapsBrowse by VendorCisco Command ReferenceCCNA Scenarios

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

← Cloud Concepts, Architecture, and Design practice sets

CCSP Cloud Concepts, Architecture, and Design • Complete Question Bank

CCSP Cloud Concepts, Architecture, and Design — All Questions With Answers

Complete CCSP Cloud Concepts, Architecture, and Design question bank — all 0 questions with answers and detailed explanations.

84
Questions
Free
No signup
Certifications/CCSP/Practice Test/Cloud Concepts, Architecture, and Design/All Questions
Question 1easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company requires that its cloud service provider offers a dedicated environment with no shared infrastructure. Which cloud deployment model should the company choose?

Question 2easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud service model provides the consumer with the ability to deploy and run custom applications using the provider's programming languages, libraries, and tools, but does not allow management of the underlying infrastructure?

Question 3mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A security auditor is reviewing a cloud provider's controls to ensure that customer data is appropriately isolated. Which design principle is most directly related to this requirement?

Question 4mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company is adopting a hybrid cloud model to run sensitive workloads on-premises and less critical applications in the public cloud. Which security consideration is most critical for this environment?

Question 5mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud characteristic allows a consumer to automatically provision computing resources, such as server time and storage, as needed without requiring human interaction with the service provider?

Question 6hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud customer is evaluating a provider's service level agreement (SLA) that guarantees 99.99% availability. What is the maximum allowable downtime per year (in minutes) before the SLA is violated?

Question 7mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which of the following is a key benefit of using containers, such as Docker, in a cloud environment to achieve portability?

Question 8easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

In the NIST SP 800-145 definition of cloud computing, which characteristic is described as the capability to rapidly and elastically provision and release resources, often automatically?

Question 9mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company wants to avoid vendor lock-in when adopting cloud services. Which strategy is most effective for achieving portability?

Question 10hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

In a public cloud IaaS environment, which of the following is the customer responsible for securing, according to the shared responsibility model?

Question 11mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A community cloud is best suited for which scenario?

Question 12hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which audit report provides the most comprehensive assurance regarding a cloud provider's controls over a period of time, including controls related to security, availability, processing integrity, confidentiality, and privacy?

Question 13mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud security architect is designing a multi-tenant SaaS application. Which TWO isolation mechanisms should be implemented to prevent data leakage between tenants?

Question 14hardmulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is migrating a legacy application to the cloud and wants to maximize elasticity. Which THREE characteristics should the application support to benefit from cloud elasticity?

Question 15mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud provider offers a service with an SLA of 99.9% availability. Which TWO of the following are likely consequences if the provider fails to meet this SLA?

Question 16easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company is considering moving its customer relationship management (CRM) system to the cloud. The CRM is accessed through a web browser and the provider handles all maintenance, security, and infrastructure. Which cloud service model is being used?

Question 17easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud characteristic allows a user to automatically provision computing resources without requiring human interaction with the service provider?

Question 18mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization wants to deploy a cloud environment where multiple separate agencies with common compliance requirements share the infrastructure, but each agency retains some control over their own resources. Which deployment model best fits this scenario?

Question 19mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

In a public cloud IaaS model, which of the following security controls is the cloud customer primarily responsible for implementing?

Question 20mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud provider guarantees 99.99% availability for a service. What is the maximum allowed downtime per year (rounded to nearest minute)?

Question 21hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company is designing a multi-cloud strategy to avoid vendor lock-in and ensure portability. They are considering using containers and an open-source orchestration platform. Which of the following is the BEST choice to achieve workload portability across different cloud providers?

Question 22hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization needs to migrate a legacy application to the cloud. The application requires full control over the operating system, middleware, and runtime. The team wants to minimize management overhead while retaining OS-level access. Which cloud service model is most appropriate?

Question 23mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which of the following is a key benefit of using a hybrid cloud deployment model?

Question 24easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which NIST-defined cloud characteristic ensures that resources can be scaled up and down rapidly based on demand?

Question 25mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud security architect is evaluating a CSP for a financial services client. Which of the following audit reports would provide the most comprehensive assurance regarding the CSP's controls over security, availability, processing integrity, confidentiality, and privacy?

Question 26mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which design principle is MOST directly concerned with the ability to move workloads between cloud providers or back on-premises without significant re-architecture?

Question 27hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company plans to deploy a multi-tier application across multiple cloud providers to avoid single points of failure. They need to ensure consistent security policies, including identity federation and network segmentation, across all environments. Which architecture consideration is MOST critical?

Question 28mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud architect is designing a multi-tenant SaaS application. Which TWO isolation mechanisms are essential to prevent tenant data leakage? (Choose two.)

Question 29hardmulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is evaluating a cloud service provider and reviewing their SLA. Which THREE metrics are most important for assessing the provider's reliability and accountability? (Choose three.)

Question 30mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A company is adopting a hybrid cloud strategy. Which TWO security considerations are most critical for maintaining a consistent security posture across environments? (Choose two.)

Question 31easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company wants to migrate its customer relationship management (CRM) system to the cloud and requires that the provider manages the underlying infrastructure, operating system, and middleware, while the company manages only the application and data. Which cloud service model best meets these requirements?

Question 32mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A financial institution is subject to strict regulatory requirements that mandate data residency and physical control over its infrastructure. At the same time, it wants to leverage cloud bursting for peak loads. Which deployment model should the institution adopt?

Question 33hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is evaluating a cloud provider's SLA for a critical application. The provider offers a 99.95% uptime SLA with a 10% service credit for each 30-minute downtime period exceeding the threshold. The organization's business impact analysis requires a maximum downtime of 4.38 hours per year. Does the provider's SLA meet this requirement, and what is the annual allowed downtime based on the SLA?

Question 34easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which characteristic of cloud computing allows a user to provision computing resources automatically without requiring human interaction with the service provider?

Question 35mediummultiple choice
Study the full virtualization explanation →

A cloud service provider (CSP) offers a shared infrastructure where multiple customers' virtual machines run on the same physical host but are isolated by the hypervisor. Which cloud deployment model does this represent?

Question 36hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is migrating a legacy application to the cloud and wants to minimize vendor lock-in. They plan to use containers orchestrated by Kubernetes. Which design principle is the organization primarily applying?

Question 37mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which of the following is a key consideration when evaluating a cloud service provider's ability to meet compliance requirements for data sovereignty?

Question 38easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

In the shared responsibility model for public cloud, which of the following is typically the responsibility of the cloud customer when using IaaS?

Question 39mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud architect is designing a solution that must automatically scale compute resources based on real-time demand. The application is stateless and can tolerate brief interruptions. Which cloud design principle is most directly addressed by this requirement?

Question 40hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company is migrating to a hybrid cloud and needs to ensure consistent security policies across both on-premises and cloud environments. Which of the following is the MOST critical consideration?

Question 41easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which NIST SP 800-145 cloud service model provides the consumer with the ability to deploy applications onto a cloud infrastructure where the consumer does not manage the underlying cloud infrastructure, including network, servers, operating systems, or storage, but has control over the deployed applications and possibly configuration settings for the application-hosting environment?

Question 42mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is looking for a cloud deployment model that is provisioned for exclusive use by a single organization, but may be owned, managed, and operated by the organization, a third party, or some combination. Which deployment model is this?

Question 43mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud security architect is designing a multi-tenant SaaS application that must ensure strong isolation between tenants. Which TWO mechanisms are most effective for achieving multitenancy isolation?

Question 44hardmulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A company is evaluating cloud providers for a critical workload and requires high availability, disaster recovery, and portability. Which THREE factors should the company prioritize in the provider evaluation?

Question 45mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is adopting a hybrid cloud strategy and needs to ensure secure connectivity between on-premises and cloud environments. Which TWO approaches are most appropriate for this purpose?

Question 46easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud service model provides the customer with the most control over the underlying infrastructure, including operating systems and applications?

Question 47mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A financial services company is required to keep customer data within a specific geographic boundary due to regulatory requirements. The company is evaluating cloud deployment models. Which model would best ensure data sovereignty while still providing scalability?

Question 48hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud provider's SLA guarantees 99.95% uptime for a service. Over a one-year period (365 days), what is the maximum allowed downtime in minutes to meet this SLA?

Question 49easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which characteristic of cloud computing allows a user to provision resources automatically without requiring human interaction with the service provider?

Question 50mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is moving a legacy application to the cloud and wants to minimize changes to the application code. They require full control over the operating system and middleware. Which cloud service model is most appropriate?

Question 51hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud customer is reviewing a provider's SOC 2 Type II report. What does this report primarily attest to?

Question 52mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which design principle is most directly aimed at avoiding vendor lock-in and ensuring that workloads can be moved between cloud providers with minimal effort?

Question 53easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

In the NIST SP 800-145 definition, which deployment model is described as infrastructure provisioned for exclusive use by a single organization comprising multiple consumers?

Question 54mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company uses a hybrid cloud model where sensitive data resides in a private cloud, while compute-intensive analytics run in a public cloud using anonymized data. What is the primary security consideration for this architecture?

Question 55hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization wants to ensure that if they decide to migrate away from their current cloud provider, they can retrieve all data in a usable format and delete it from the provider's systems. Which principle does this best describe?

Question 56mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

In the shared responsibility model for public cloud IaaS, which of the following is typically the responsibility of the cloud customer?

Question 57easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud characteristic refers to the ability to automatically scale resources up or down based on demand?

Question 58mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud architect is designing a multi-tenant SaaS application. Which TWO design principles are critical for ensuring tenant isolation? (Select TWO.)

Question 59hardmulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A company is evaluating cloud providers for a global application. They need to ensure high availability and low latency. Which THREE factors are most important to consider during provider evaluation? (Select THREE.)

Question 60mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is adopting a hybrid cloud strategy. Which THREE considerations are vital for maintaining consistent security across environments? (Select THREE.)

Question 61easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud service model allows customers to manage only their data and user access, while the provider manages everything else including the infrastructure, operating system, and applications?

Question 62mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A financial institution requires a cloud environment that is shared by multiple organizations with common regulatory compliance needs, such as PCI DSS. Which deployment model is most appropriate?

Question 63hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is evaluating cloud service providers and notices that one provider's SLA offers 99.99% availability for a specific service, while another offers 99.9%. If the service costs $100,000 per month, what is the maximum allowable downtime per month for the 99.99% SLA?

Question 64easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which characteristic of cloud computing allows a user to automatically provision computing resources without requiring human interaction with the service provider?

Question 65mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A company wants to migrate a legacy application to the cloud with minimal re-architecture. They need control over the operating system and middleware but do not want to manage physical hardware. Which service model is most suitable?

Question 66hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud design principle is most directly related to ensuring that an organization can migrate workloads from one cloud provider to another without significant re-engineering?

Question 67easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

In a hybrid cloud deployment, which of the following is a critical security consideration?

Question 68mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is using a public cloud IaaS and wants to ensure they understand which security responsibilities fall on them. According to the shared responsibility model, which of the following is the customer responsible for in an IaaS deployment?

Question 69mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud design principle ensures that resources can be dynamically adjusted to meet changing demand, often using auto-scaling groups?

Question 70hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud provider offers a service with an SLA of 99.999% availability. What is the maximum allowable downtime per year in minutes? (Assume 365 days)

Question 71mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which of the following is an example of a cloud interoperability standard that facilitates portability of containerized applications across different cloud environments?

Question 72easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which NIST essential characteristic of cloud computing allows the provider to dynamically assign and reassign resources to multiple tenants, often using a multi-tenant model?

Question 73mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A company is considering migrating its customer relationship management (CRM) system to a SaaS provider. Which TWO of the following security responsibilities typically remain with the customer in a SaaS deployment?

Question 74hardmulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is evaluating cloud service providers and wants to ensure that the provider can demonstrate independent verification of its security controls. Which THREE of the following are recognized cloud security audit reports or certifications?

Question 75mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A cloud architect is designing a multi-tenant SaaS application. Which THREE of the following are essential isolation mechanisms that must be implemented to ensure tenant separation?

Question 76easymultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

Which cloud service model provides the customer with the ability to deploy and run custom applications using the provider's infrastructure, where the customer manages the applications and data, but does not manage the underlying operating system or hardware?

Question 77mediummultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

A healthcare organization is migrating patient records to a public cloud provider. Which of the following is the most critical consideration regarding shared responsibility when using IaaS?

Question 78hardmultiple choice
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is designing a multi-cloud strategy using containers to avoid vendor lock-in. Which of the following approaches BEST ensures portability of containerized applications across different cloud providers?

Question 79easymulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

Which TWO of the following are essential characteristics of cloud computing as defined by NIST SP 800-145?

Question 80mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

A financial institution is evaluating a community cloud deployment shared with other banks. Which TWO security considerations are MOST important for this deployment model?

Question 81mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

Which THREE of the following are benefits of using a hybrid cloud deployment model?

Question 82hardmulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

When evaluating a cloud service provider's SLA, which TWO metrics are MOST relevant for assessing availability and reliability?

Question 83hardmulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

An organization is migrating a legacy application to the cloud and requires reversibility. Which THREE of the following should be considered to ensure the application can be migrated away from the cloud provider in the future?

Question 84mediummulti select
Read the full Cloud Concepts, Architecture, and Design explanation →

Which THREE of the following are valid methods for achieving multitenancy isolation in a public cloud IaaS environment?

Practice tests

Scored 10-question sessions with instant feedback and explanations.

CCSP Practice Test 1 — 25 Questions→CCSP Practice Test 2 — 25 Questions→CCSP Practice Test 3 — 25 Questions→CCSP Practice Test 4 — 25 Questions→CCSP Practice Test 5 — 25 Questions→CCSP Practice Exam 1 — 20 Questions→CCSP Practice Exam 2 — 20 Questions→CCSP Practice Exam 3 — 20 Questions→CCSP Practice Exam 4 — 20 Questions→Free CCSP Practice Test 1 — 30 Questions→Free CCSP Practice Test 2 — 30 Questions→Free CCSP Practice Test 3 — 30 Questions→CCSP Practice Questions 1 — 50 Questions→CCSP Practice Questions 2 — 50 Questions→CCSP Exam Simulation 1 — 100 Questions→

Practice by domain

Each domain maps to a weighted exam section. Focus on the domain where you are weakest.

Cloud Platform and Infrastructure SecurityCloud Security OperationsLegal, Risk, and ComplianceLegal, Risk and ComplianceCloud Data SecurityCloud Concepts, Architecture, and DesignCloud Application SecurityCloud Concepts, Architecture and Design

Practice by scenario

Filter questions by type — troubleshooting, exhibit, drag-and-drop, PBQ, ACLs, OSPF, and more.

Browse scenarios→

Continue studying

All Cloud Concepts, Architecture, and Design setsAll Cloud Concepts, Architecture, and Design questionsCCSP Practice Hub