Security Engineering

Cloud Security

8 practice questions. Free questions open a full answer guide; the rest unlock with Pro.

  • What is the principle of least privilege and how does it apply to IAM roles in AWS? Junior level
  • How does privilege escalation actually happen inside a cloud account's IAM, and how would you set a hard ceiling on what any identity can do regardless of its policies?Go Pro Senior level
  • You have a CSPM tool flagging misconfigurations after they're already live in the cloud. Why isn't detection enough, and how would you reason about preventing the misconfiguration from ever being deployed?Go Pro Senior level
  • Your CSPM and CNAPP tooling generates thousands of findings a week that the team can't possibly work through. How do you decide what actually gets fixed?Go Pro Senior level
  • How do you design IAM in a cloud account so that a single compromised workload can't be used to escalate privileges or move laterally?Go Pro Mid level
  • How can a server-side request forgery bug lead to stolen cloud credentials, and how do you stop it?Go Pro Mid level
  • What is the shared responsibility model in cloud security, and what does it mean for what you're responsible for?Go Pro Junior level
  • How would you catch and prevent a misconfigured cloud storage bucket or over-permissive resource from being exposed publicly, rather than finding out after the fact?Go Pro Mid level
Want questions matched to your role? Paste a job title, job description, or CV for a personalized set, or go Pro to unlock the full bank.