Agile&Devops, Devsecops QUIZZES


 Dashboard / Primer 2.0 - App Dev / Stage 1 / Agile & DevOps DevSecOps / Introduction to Agile
Quiz review
Started on Sunday, 21 January 2024, 3:45 PM
State Finished
Completed on Sunday, 21 January 2024, 3:46 PM
Time taken 1 min 18 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Feedback Congratulations!! You have passed by securing more than 80%
Question 1
Correct
Mark 1.00 out of 1.00
45573
________ is the process during which the changes of a system are implemented in a controllable manner by following a predefined model,
with some reasonable modifications.
Select one:
a. Change Management
b. Update Management
c. Modification Management
45573
Your answer is correct.
The correct answer is: Change Management
Question 2
Correct
From the options select the configuration items that are eligible for configuration management
Select one or more:

a. Source code document
b. Test Report 45573

c. SRS
d. Design Document

The correct answers are: Source code document, Test Report, SRS, Design Document
Question 3
Correct
Which is the software configuration concept that ensures that change should be done in a controlled and authorized environment
Select one:
a. SVN
b. Audit
c. Baseline
d. Configuration database
The correct answer is: Baseline
Question 4
Correct
45573
Tom and Peter works on the same project. Tom does his work and update the local copy back to the configuration management server.
This process is called as
Select one:
a. Check-out
b. Check-in
c. Management
d. Baseline
45573
The correct answer is: Check-in
Question 5
Correct
45573
____________ ensures that when two different people does the work and update parallelly, one should not over write the other
Select one:
a. Synchronization control
b. Check-out
c. Baseline
d. Check-in

The correct answer is: Synchronization control
Jump to...
Agile Introduction Video ►
45573
45573
45573

Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
45573
Collaborative and co-operative approach among all the stake holders is important. This is a feature of the _______________ Agile
Methodology
Select one:
a. Scrum
b. Dynamic system development method, 
c. Lean Software Development

45573
Collaborative and co-operative approach among all the stake holders is given importance in Dynamic system development method
The correct answer is: Dynamic system development method,
Question 2
Correct
Which of these is not an agile methodology
a. DSDM
b. SPIRAL
45573
c. SCRUM
d. CRYSTAL

The correct answer is:
SPIRAL
Question 3
Correct
Scrum divides the development into short cycles called as ______
a. Spiral Cycles
b. Sprint Cycles
c. Risk Cycles
d. Stable Cycles

Sprint Cycles
Question 4
Correct
45573
________ methodology is useful when the client requirements are not clear and stable
a. Waterfall Methodology
b. Spiral Methodology
c. Prototype Methodology
d. Agile Methodology
45573
Agile Methodology
Question 5
Correct
DSDM is iterative and incremental 45573

Select one:
True 
False
The correct answer is 'True'.
◄ Introduction to Agile Methodologies
Jump to...
Post-Quiz ►
45573
45573
45573

Quiz review
State Finished
Time taken 3 mins 2 secs
Marks 6.00/6.00
Grade 100.00 out of 100.00
Question 1
Correct
45573
Which agile methodology divides the development into sprint cycles, in which a Specified set of features are delivered? Choose from the
following:
Select one:
a. Extreme programming
b. Lean Software Development
c. SCRUM
The correct answer is: SCRUM

45573
Question 2
Correct
What are the roles in dynamic system development method? Choose from the following:
Select one or more:

a. Designer
b. System Analyst
c. Technical Coordinator
45573
d. Scribe Facilitator

The correct answers are: Scribe Facilitator, Technical Coordinator
Question 3
Correct
_____ methodology focus on visualization flow
a. Prototype
b. DSDM
c. Scrum
d. Kanban

Kanban
Question 4
Correct
45573
State true or false. During agile development more emphasize is given for documentation
Select one:
a. FALSE
b. TRUE
Your answer is correct. 45573

The correct answer is: FALSE
Question 5
Correct
__________ is an iterative and incremental approach that embraces principles of agile development, including continuous user/customer
involvement.
Select one:
a. Loop creation method
45573
b. Static System Development Method
c. Increment Method
d. Dynamic System Development Method
The correct answer is: Dynamic System Development Method

Question 6
Correct
Which of the following agile methodologies depends on the cohesiveness of the team and individual commitment of the team
members?
Select one:
a. SCRUM
b. Extreme programming
c. Lean Software Development
d. Feature Driven Development

The correct answer is: Lean Software Development
45573
◄ Test Your Understanding
Jump to...
Business Analytics Intro Video ►
45573
45573

 Dashboard / Primer 2.0 - App Dev / Stage 1 / Agile & DevOps DevSecOps / Business Analytics and Design Thinking
Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
____ layer in busness analytics indicate what is happening or what has happened
Select one:
Cognitive Layer
45573
Predictive Layer
Descriptive Layer
Prescriptive Layer
The correct answer is: Descriptive Layer
Question 2
Correct

45573
An optimal solution is based on ___
Select one or more:

Targets
Limits
Choices
Source
The correct answers are: Targets, Limits, Choices

45573
Question 3
Correct
____ layer describes what could happen
Select one:
Prescriptive Layer
Cognitive Layer
Predictive Layer
Descriptive Layer
The correct answer is: Predictive Layer
Question 4
45573
Correct
_____ Allows decision makers at virtually all levels of the organization to gain insight into business performance and data to support and guide actions.
Select one:
SCM
BPM
ERP
CRM
The correct answer is: BPM

45573
Question 5
Correct
Analytics reveal hidden patterns in _____
Select one:
Solutions
Programs
Data 45573
Functions
The correct answer is: Data
◄ Business Analytics Intro Video
Jump to...
Business Analytics Overview ►


Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
The challenge faced in Business Analytics are
Select one or more:

Velocity of data
45573
Integral data
Volume of data
Variety of data
The correct answers are: Volume of data, Variety of data, Velocity of data
Question 2
Correct

45573
_____ helps to uncover unexpected patterns and associations from all data within an organization
Select one:
Predictive Layer
Prescriptive Layer
Descriptive Layer
Cognitive Layer
The correct answer is: Predictive Layer

45573
Question 3
Correct
______ is the Process of discovering various models, summaries and derived values from a given collection of data
Select one:
Data Mart
Data Warehouse
Cube
Data Mining
The correct answer is: Data Mining
Question 4
45573
Correct
To understand the best course of action for a problem is ____
Select one:
Cognitive Layer
Predictive Layer
Prescriptive Layer
Descriptive Layer
The correct answer is: Cognitive Layer

45573
Question 5
Correct
By working to plan an information agenda, master information, and apply Business Analytics, organizations can take advantage of the following areas
Select one or more:

Source Control management
Information Management
ECM 45573
Domain management
The correct answers are: Information Management, ECM
◄ Business Analytics Architectural Concepts
Jump to...
Business Analytics Techniques Pre quiz ►


Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Which is not a KPI
Select one:
Leading KPI
45573
Process KPI
Input KPI
Effort KPI
The correct answer is: Effort KPI
Question 2
Correct

45573
_____ helps an organization to define and measure progress towards organizational goals.
Select one:
BPM
ERP
CRM
KPI
The correct answer is: KPI

45573
Question 3
Correct
Which of these are attributes of performance measure
Select one or more:

Relevant
Holistic
Strategic
Timely
The correct answers are: Strategic, Holistic, Relevant, Timely
Question 4
45573
Correct
Expand KSI
Select one:
Key Success Initiative
Key Success Indicator
Key Success Index
Key Source Indicator
The correct answer is: Key Success Indicator

45573
Question 5
Correct
____ reflect the success or failure after an event has been consumed
Select one:
Lagging KPI
Leading KPI
Input KPI 45573

Process KPI
The correct answer is: Lagging KPI
◄ Business Analytics Post quiz
Jump to...
Business Analytics Techniques -1 ►


Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
A metric should be time bound
Select one:
True 
45573
False
Question 2
Correct
45573
____ is an important measure of how well an organization meets or exceeds a customer's expectations
Select one:
ERP
KPIs
Customer Satisfaction
CRM
The correct answer is: Customer Satisfaction
45573
Question 3
Correct
The most common form of KPI reporting is ____
Select one:
Dashboarding
KPIs
CRM
ERP
The correct answer is: Dashboarding
Question 4
45573
Correct
_____ is the subject matter area on which reports revolve around.
Select one:
Content
Documents
Books
Digital Files
The correct answer is: Content

45573
Question 5
Correct
Units per hour is an example of what KPI
Select one:
Qualitative KPI
Outcome KPI
Quantitative KPI 45573

Lagging KPI
The correct answer is: Quantitative KPI
◄ Management Dashboards
Jump to...
Design thinking Pre quiz ►


Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Design Thinking is focusing on the stated problem than to arrive at a solution immediately
Select one:
True 
45573
False
Question 2
Correct
Which is not a phase in design thinking

45573
Select one:
Materialize
Understand
Model
Explore
The correct answer is: Model
45573
Question 3
Correct
Stating Your Users' Needs and Problems is done in which phase
Select one:
Define
Ideate
Prototype
Empathize
The correct answer is: Define
Question 4
45573
Correct
Sub phases of understand phase is ___
Select one or more:

Empathize
Ideate
Prototype
Define
The correct answers are: Empathize, Define

45573
Question 5
Correct
____ is an iterative process in which we understand the users clearly
Select one:
Artificial Intelligence
Designing
Design Thinking 45573

Machine Learning
The correct answer is: Design Thinking
◄ Business Analytics Techniques Post quiz
Jump to...
Design Thinking ►

Quiz review
State Finished
Time taken 20 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
_______in design thinking is a written, actionable statement that expresses the problem that the design team is trying to address.
Select one:
POV
45573
Ideate
Bodystorm
Empathy
The correct answer is: POV
Question 2
Correct

45573
Which of the following is mapped by an empath map
Select one or more:

Feels
Says
Does
Thinks
The correct answers are: Says, Thinks, Does, Feels

45573
Question 3
Correct
Analyzing how users interact with their environment is a ____ activity in Empathize
Select one:
Ideate
Engage
Immerse
Observer
The correct answer is: Observer
Question 4
45573
Correct
Researching Your Users' Needs is done in which phase
Select one:
Define
Ideate
Prototype
Empathize
The correct answer is: Empathize

45573
Question 5
Correct
Challenge Assumptions and Create Ideas is done in
Select one:
Empathize
Define
Prototype 45573
Ideate
The correct answer is: Ideate
◄ Design Thinking
Jump to...
Introduction to Devops - PreQuiz ►


 Dashboard / Primer 2.0 - App Dev / Stage 1 / Agile & DevOps DevSecOps / DevOps
Quiz review
State Finished
Marks 10.00/10.00
Grade 100.00 out of 100.00
Question 1
Correct
Before DevOps, there is a significant delay between development and operations
Select one:
True 
45573
False
Question 2
Correct
45573
Which of the following CI/CD tools is a continuous integration server developed by Atlassian?
Select one:
Bamboo
TeamCity
GitLab
Jenkins
The correct answer is: Bamboo
45573
Question 3
Correct
Which of the following CI/CD tools is known for its ease of setup, out-of-the-box usability, and beautiful user interface?
Select one:
CircleCI
TeamCity
Jenkins
Bamboo
The correct answer is: TeamCity
Question 4
45573
Correct
In YAML file used for BitBucket pipeline, you can use different types of container for each step by selecting different images
Select one:
True 
False
Question 5
Correct
45573
Which of the following is the final phase of the DevOps cycle?
Select one:
Operate
Release
Deploy
Monitor
45573
The correct answer is: Monitor
Question 6
Correct
Which of the following CI/CD toolsprovides support for .Net framework?
Select one:
TeamCity
Bamboo
GitLab
CircleCI
The correct answer is: TeamCity
Question 7
45573
Correct
Each service runs in its own process and communicates with other services through a well-defined interface in Microservices
Select one:
True 
False
Question 8
Correct
45573
The applications with Azure CI/CD pipelines can be deployed to multiple target environments
Select one:
True 
False

45573
Question 9
Correct
In which of the following pipelines, all the new changes run through a consistent set of quality checks?
Select one:
GitLab pipeline
Azure pipeline
Bitbucket pipeline
AWS codpipeline
The correct answer is: AWS codpipeline
Question 10
45573
Correct
In which of the following, there is no human intervention and only a failed test will prevent a new change to be deployed to production?
Select one:
Continuous monitoring
Continuous Deployment
Continuous Delivery
Continuous Integration
The correct answer is: Continuous Deployment

45573
◄ Design thinking Post quiz
Jump to...
Devops course introduction ►
45573

 Dashboard / Primer 2.0 - App Dev / Stage 1 / Agile & DevOps DevSecOps / DevOps
Quiz review
State Finished
Marks 10.00/10.00
Grade 100.00 out of 100.00
Question 1
Correct
In GitLab, pipes are agents that run the CI/CD Jobs
Select one:
True
45573
False 
The correct answer is 'False'.
Question 2
Correct
45573
Pipe uses a script that lives in a Docker container
Select one:
True 
False
45573
Question 3
Correct
In Continuous Integration, build status is reported to developers when they are changing the code.
Select one:
True 
False

Question 4
Correct
Which of the following uses a version control system and a central code repository for tracking the code changes made by developers?
Select one:
Continuous Deployment
Continuous Monitoring
Continuous Integration
Continuous Delivery
The correct answer is: Continuous Integration
Question 5
45573
Correct
Which of the following CI/CD tools is designed to handle anything from a simple CI server to a complete CD hub?
Select one:
TeamCity
CircleCI
Jenkins
Bamboo
The correct answer is: Jenkins

45573
Question 6
Correct
You can either define the pipeline using YAML syntax or through the user interface in Azure pipeline
Select one:
True 
False
45573
Question 7
Correct
The __________is used to record the code changes made by developers so that these changes can be shared to others
Select one:
Change Control Board
Repository
Trello Board
Version control system
The correct answer is: Version control system
Question 8
45573
Correct
Which of the following are the services provided by Azure DevOps?
Select one or more:

Azure Agents
Azure Repos
Azure Artifacts
Azure Boards
45573
The correct answers are: Azure Boards, Azure Artifacts, Azure Repos
Question 9
Correct
Which of the following CI/CD tools is suitable for small projects?
Select one:
Bamboo
CircleCI
GitLab 45573
TeamCity
The correct answer is: CircleCI

Question 10
Correct
In _________, developed code is continuously delivered until the programmer considers it is ready to ship.
Select one:
Continuous Delivery
The correct answer is: Continuous Delivery
45573
◄ AWS Continuous deployment
Jump to...
DevsecOps Part 1 Pre quiz ►
45573
45573

 Dashboard / Primer 2.0 - App Dev / Stage 1 / Agile & DevOps DevSecOps / DevSecOps
Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
DevOps bridges the gap between development and operations teams.
Select one:
True 
45573
False
Question 2
Correct
45573
Which of the following is a a software development practice where members of a team use a version control system and frequently integrate their work to
the same location like the main branch?
Continuous Delivery
Continuous Integration
The correct answer is: Continuous Integration
Question 3
45573
Correct
A Blue/Green deployment is a deployment strategy in which you create two separate, but identical environments.
Select one:
True 
False

Question 4
Correct
With Continuous Delivery, production happens automatically without explicit approval.
Select one:
True
False 
Question 5
Correct
45573
CAMS Stands for Culture, Automation, _________ and ________.
Sharing
Motivation
Measurement
Standard
The correct answers are: Measurement, Sharing
◄ Introduction to Devops - PostQuiz

45573
Jump to...
DevSecOps Part 1 ►
45573

Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
In CAMS Model, ________ is all about monitoring and tracking the progress of various activities involved in the DevOps environment.
Automation
Sharing
45573
Measurement
Culture
The correct answer is: Measurement
Question 2
45573
Correct
DevOps culture is about agility, scalability, continuous improvements in the delivery of services.
Select one:
True 
False
Question 3
Correct
45573
Using a blue/green deployment strategy increases application availability and reduces deployment risk by simplifying the rollback process if a deployment
fails.
Select one:
True 
False

Question 4
Correct
In the Blue/Green deployment, once testing has been completed on the blue environment, live application traffic is directed to the blue environment and the
green environment is deprecated.
Select one:
True
False 
Question 5
Correct
45573
Which of the following refers to automatically releasing a developer’s changes from the repository to production, where it is usable by customers?
Continuous Deployment
Continuous Delivery
The correct answer is: Continuous Deployment
45573
◄ DevSecOps Part 1
Jump to...
45573

Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Which of the following are the Test Automation tools?
Vagrant
Terraform
45573
Selenium
AWS CloudFormation
The correct answer is: Selenium
Question 2
45573
Correct
Replacing or modifying older apps with newer microservices architecture can open up the doors to faster development and quicker innovation.
Select one:
True 
False
Question 3
Correct
45573
Which of the following are the Software Configuration Management tools?
CVS
Git
Docker
Ansible
The correct answers are: Git, CVS

Question 4
Correct
Infrastructure-as-Code tools are used to create software environments using predefined templates.
Select one:
True 
False
Question 5
Correct
45573
________ is the first phase of the pipeline, where developers put in their code and then again the code goes to the version control system with a proper
version tag.
Build phase
Deploy phase
Validate phase
Test phase
The correct answer is: Build phase
45573
◄ DevsecOps Part 1 Post quiz
Jump to...
45573

Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Which of the following phases in the CI/CD pipeline get all the features of that code from various branches of the repository, merge them and finally use a
45573
compiler to compile it?
Testing phase
Validation phase
Deploy phase
Build phase
The correct answer is: Build phase
Question 2
Correct

45573
Unit Testing tests individual units or components of a code written by the developer to validate if they perform as expected.
Select one:
True 
False
Question 3
45573
Correct
Which of the following are Infrastructure-As-Code tools?
SVN
Terraform
AWS CloudFormation
Kubernetes
The correct answers are: AWS CloudFormation, Terraform

Question 4
Correct
_________ and ________ are CI/CD software that automates tasks starting from development pipeline to deployment.
Puppet
Bamboo
Jenkins
Vagrant
The correct answers are: Jenkins, Bamboo
Question 5
Correct
45573
An Elastic stack can be created to automatically monitor the application and logs.
Select one:
True 
False
45573
Jump to...
45573

Quiz review
State Finished
Time taken 14 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
A _________ is an application security solution that can help to find certain vulnerabilities in web applications while they are running in production.
45573
Software Composition Analysis
Container security
Static Analysis Security Testing
Dynamic Analysis Security Testing
The correct answer is: Dynamic Analysis Security Testing
Question 2
45573
Correct
Vulnerability Scanning ensures that code is checked for vulnerabilities at every major stage of the delivery pipeline from the time it is written to, when it is
deployed into production.
Select one:
True 
False
Question 3
45573
Correct
Use a SAST tool to ensure that your code is secure, safe, and reliable.
Select one:
True 
False

Question 4
Correct
Which of the following DevSecOps tools allows an All-in-One website security scanner to support developers to detect problems at the most advanced
stage?
Codacy
Acunetix
GitLab
Aqua Security
The correct answer is: Acunetix
Question 5
45573
Correct
__________ refers to the process of tracking the identified vulnerabilities, the steps taken to mitigate and/or eliminate those vulnerabilities, and the overall
status of the application’s security.
Monitor
Remediate
Analyze
Scan
The correct answer is: Monitor

45573
Jump to...
45573

Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
_________ is an enterprise-grade automated code review solution that uses static code analysis to provide comprehensive vulnerability reporting.
Aqua Security
Acunetix
45573
Codacy
SonarQube
The correct answer is: Codacy
Question 2
45573
Correct
_______ is a web-based DevOps program that gives a full CI/CD toolchain out-of-the-box in one particular application.
Aqua Security
Contrast Security
GitLab
Logz.io
45573
The correct answer is: GitLab
Question 3
Correct
Runtime protection means securing software against threats that can arise when your application starts running.
Select one:
True
False 

Question 4
Correct
__________ provides a summary of possible attack scenarios, outlines the flow of sensitive data, and identifies vulnerabilities and offers potential mitigation
options.
Scan
Threat Modeling
Monitor
Remediate
The correct answer is: Threat Modeling
Question 5
45573
Correct
___________ is an application security methodology for managing open source components.
Software Composition Analysis
Container security
Static Analysis Security Testing
Dynamic Analysis Security Testing
45573
The correct answer is: Software Composition Analysis
Jump to...
45573

Quiz review
State Finished
Time taken 15 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
DSOMM Level 1 calls for the execution of static analysis tools without any changes to the tools or settings.
Select one:
True 
45573
False
Question 2
Correct
45573
_________ is incorporated in the implementation phase of Secure SDLC.
Static Analysis
Dynamic Analysis
Security Monitoring/Compliance
OS Hardening, Web/Application Hardening
The correct answer is: Static Analysis
Question 3
Correct
45573
Which of the following are considered as the 4-Axes in DSOMM?
Collaboration
Static Depth
Intensity
Strategy
The correct answers are: Static Depth, Intensity

Question 4
Correct
Security issues can be addressed in the SDLC pipeline well before deployment to production.
Select one:
True 
False
Question 5
Correct
45573
During the development phase in secure SDLC, teams need to make sure that they use secure coding standards.
Select one:
True 
False
45573
Jump to...
45573

Quiz review
State Finished
Time taken 49 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Employing both SAST and DAST in a pipeline would cover both codebase and runtime vulnerabilities.
Select one:
True 
45573
False
Question 2
Correct
45573
Which of the following are the three critical areas focused by Security Monitoring/Compliance in Secure SDLC?
Shifting security left in the SDLC
Creating an audit trail throughout the development
Building security into policies
Hardening web applications
The correct answers are: Shifting security left in the SDLC, Building security into policies, Creating an audit trail throughout the development
Question 3
Correct
45573
DSOMM strives to incrementally increase the effectiveness of a security program from Level 1 to Level 4.
Select one:
True 
False

Question 4
Correct
Which of the following are the steps of Threat Modeling?
Mitigation
Usecase Modeling
Ranking Threats
Decomposing the application
The correct answers are: Decomposing the application, Ranking Threats, Mitigation
Question 5
Correct
45573
In which of the following phases of Secure SDLC, teams follow architecture and design guidelines to address risk?
Development
Requirement Analysis
Planning
Architecture And Design
The correct answer is: Architecture And Design
45573
Jump to...
45573

Quiz review
State Finished
Marks 3.00/3.00
Grade 100.00 out of 100.00
Question 1
Correct
Which of the following are the Software Composition Analysis tools?
Aqua Security
Dependency Checker
45573
Docker
WhiteSource
The correct answers are: WhiteSource, Dependency Checker
Question 2
45573
Correct
Bill Of Materials (BOM) describe the components included in applications, the version of the components used, and the license types for each.
Select one:
True 
False
Question 3
Correct
45573
Any component that has the potential to adversely impact cyber supply-chain risk is a candidate for Component Analysis.
Select one:
True 
False

Jump to...
45573
45573
45573

Quiz review
State Finished
Time taken 12 secs
Marks 3.00/3.00
Grade 100.00 out of 100.00
Question 1
Correct
SAC tools can both spot any security weak points and suggest potential solutions based on the entire code base.
Select one:
True 
45573
False
Question 2
Correct
45573
Implementing SCA ensures that all of the components in your applications are secure and compliant.
Select one:
True 
False
45573
Question 3
Correct
__________is the process of identifying potential areas of risk from the use of third-party and open-source software and hardware components.
Configuration Management
Dynamic Analysis
Component Analysis
Static Analysis
The correct answer is: Component Analysis

Jump to...
45573
45573
45573

Quiz review
State Finished
Time taken 36 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Which of the following rules comes under comprehensive rulesets while embedding SAST tools into the pipeline?
Header injection
Weak encryption
45573
XML external entity
Path manipulation
The correct answers are: XML external entity, Header injection
Question 2
45573
Correct
__________ is an approach to detect dependency bugs in build systems.
Smoke
Reshift
VeriBuild
Static code analyzer
45573
The correct answer is: VeriBuild
Question 3
Correct
SAST is performed at the static level ensuring¬ that code guidelines are followed without actually executing the application.
Select one:
True 
False

Question 4
Correct
Which of the following SAST tools is specifically built for NodeJS?
Veracode
Reshift
Klocwork
Checkmarx
The correct answer is: Reshift
Question 5
Correct
45573
Which of the following problems can be identified by using static analysis?
Violation of code style guidelines
Input/Output Validation
Dead or unused code
Code Coverage
The correct answers are: Dead or unused code, Violation of code style guidelines
45573
Jump to...
45573


Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
________ is designed for optimizing the performance for analyzing typestate problem
Checkmarx
VeriBuild
45573
Smoke
Static code analyzer
The correct answer is: Smoke
Question 2
45573
Correct
Static code analyzers help to define project specific rules to ensure that all developers follow them without any manual intervention or sidetracking.
Select one:
True 
False
Question 3
Correct
45573
Which of the following SAST tools is designed for web applications?
Klocwork
Checkmarx
Veracode
HCL AppScan
The correct answer is: HCL AppScan

Question 4
Correct
Static Application Security Testing (SAST) is also known as 'black box testing’.
Select one:
True
False 
Question 5
Correct
45573
SAST tools examine the source code at rest to detect and report on potential security vulnerabilities.
Select one:
True 
False
45573
Jump to...
45573

Quiz review
State Finished
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
In Push Based Configuration Management System, nodes pull the configuration information from the server.
Select one:
True
45573
False 
Question 2
Correct
45573
You can also use Ansible Automation Platform for configuration management to maintain your systems in the desired state.
Select one:
True 
False
45573
Question 3
Correct
Configuration drift occurs when ad-hoc configuration changes and updates result in a mismatched development, test, and deployment environments.
Select one:
True 
False

Question 4
Correct
___________ is a list of tasks that runs repeatedly in an order.
Playbook
Task
Role
Module
The correct answer is: Playbook
Question 5
Correct
45573
Which of the following is an open-source configuration management tool based on Python?
Chef
Vagrant
SaltStack
Puppet
The correct answer is: SaltStack
45573
◄ DevsecOpsPart 6 Post quiz
Jump to...
45573

Quiz review
State Finished
Time taken 28 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Ansible is an example of a pull based configuration management tool.
Select one:
True
45573
False 
Question 2
Correct
45573
Which of the following services natively integrates Role-Based Access Control (RBAC) into the management platform?
Azure Resource Manager
CF Engine
Google Cloud Deployment Manager
AWS CloudFormation
The correct answer is: Azure Resource Manager
Question 3
Correct
45573
________ allows you to create “recipes” and “cookbooks” using its Ruby-based DSL.
Vagrant
Chef
Terraform
Puppet
The correct answer is: Chef

Question 4
Correct
Ansible leverages SSH to communicate between servers.
Select one:
True 
False
Question 5
Correct
45573
_________ are the components required to operate and manage enterprise IT environments.
Infrastructure
Module
Platform
Playbook
The correct answer is: Infrastructure
45573
Jump to...
45573

Quiz review
State Finished
Time taken 16 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Vulnerability scanning tools can be used to identify specific local users and groups.
Select one:
True 
45573
False
Question 2
Correct
45573
ServerSpec lets you to include metadata about your compliance rules.
Select one:
True
False 
45573
Question 3
Correct
______ is a set of security tools that can be used to validate compliance against a set of policies.
Inspec
ClientSpec
OpenSCAP
ServerSpec
The correct answer is: OpenSCAP

Question 4
Correct
With Chef Automate, you can run your InSpec compliance tests on demand, see the results on the dashboard, and remediate the problem.
Select one:
True 
False
Question 5
Correct
45573
InSpec tests can be easily added to act as a quality gate for compliance.
Select one:
True 
False
45573
Jump to...
45573

Quiz review
State Finished
Time taken 15 secs
Marks 5.00/5.00
Grade 100.00 out of 100.00
Question 1
Correct
Once you have categorized and prioritized vulnerabilities, break down your remediation process into bite-size chunks to make them more manageable and
45573
effective.
Select one:
True 
False
Question 2
Correct
45573
InSpec can also run as a series of automated tests that execute as part of your standard release pipelines.
Select one:
True 
False
Question 3
Correct
45573
Inspec uses a client-server model.
Select one:
True 
False

Question 4
Correct
Chef Automate is an integrated solution for managing and deploying infrastructure and applications.
Select one:
True 
False
Question 5
Correct
45573
_________ was created to provide a standardized approach to maintain the security of systems.
Inspec
OpenSCAP
ClientSpec
ServerSpec
The correct answer is: OpenSCAP
45573
Jump to...
45573

Agile&Devops, Devsecops QUIZZES

Uploaded by

Copyright:

Available Formats

Agile&Devops, Devsecops QUIZZES

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Agile&Devops, Devsecops QUIZZES

Uploaded by

Copyright:

Available Formats



Mark 1.00 out of 1.00

The correct answer is: Change Management

Mark 1.00 out of 1.00

Select one or more:

b. Test Report 45573

Your answer is correct.

Mark 1.00 out of 1.00

Your answer is correct.

The correct answer is: Baseline

The correct answer is: Check-in

Mark 1.00 out of 1.00

Your answer is correct.

Agile Introduction Video ►

Mark 1.00 out of 1.00

b. Dynamic system development method, 

c. Lean Software Development

Your answer is correct.

Mark 1.00 out of 1.00

Which of these is not an agile methodology

Your answer is correct.

Mark 1.00 out of 1.00

Scrum divides the development into short cycles called as ______

Your answer is correct.

Mark 1.00 out of 1.00

DSDM is iterative and incremental 45573

The correct answer is 'True'.

◄ Introduction to Agile Methodologies

Mark 1.00 out of 1.00

b. Lean Software Development

Your answer is correct.

The correct answer is: SCRUM

Mark 1.00 out of 1.00

Select one or more:

Your answer is correct.

Mark 1.00 out of 1.00

_____ methodology focus on visualization flow

Your answer is correct.

Your answer is correct. 45573

Mark 1.00 out of 1.00

d. Dynamic System Development Method

Your answer is correct.

The correct answer is: Dynamic System Development Method

Mark 1.00 out of 1.00

c. Lean Software Development

d. Feature Driven Development

Your answer is correct.

Business Analytics Intro Video ►

Mark 1.00 out of 1.00

The correct answer is: Descriptive Layer

Mark 1.00 out of 1.00

Select one or more:

The correct answers are: Targets, Limits, Choices

Mark 1.00 out of 1.00

____ layer describes what could happen

The correct answer is: Predictive Layer

Mark 1.00 out of 1.00

The correct answer is: BPM

Mark 1.00 out of 1.00