Which solution would the RSA Cloud Trust Authority recommend to monitor corporate compliance
for a hybrid cloud infrastructure?

A company is deploying a major new business application. The application development has been
outsourced to several organizations.
The company has conducted several workshops with all suppliers and the testing team. The
outcome of their efforts is a streamlined process that has dramatically reduced the cycle time from
development to test, improved communications between all groups, and implemented common
standards and objectives.
What have they achieved?

You are a Cloud Architect working with a large financial services company. They currently have a
large, hybrid cloud that includes multiple CSPs. The company recently suffered a breach on some
of their web servers hosted at one of the CSPs and were not alerted to it.
Which product would you recommend to help the company improve their response to threats such
as this, and why?

An organization wishes to move toward a full ITaaS implementation. They have a good
understanding of Service Oriented Architecture (SOA), but have not established the needed
education, teamwork, and discipline to take them to full ITaaS implementation.
As their ITaaS consultant, you need to take them to the next level in the service orientation
maturity model. What is the next level?

A company is actively moving business applications to an ITaaS model. The IT department
increasingly acts as an adviser, proposing the best fit from either private cloud capability or public
cloud suppliers.
The company’s finance department is considering their financial applications for cloud as they

increasingly need more capacity and better performance at the end of the month, which the
current infrastructure cannot deliver. The financial application architecture is three tier
(presentation, middleware, and database).
The IT security team has suggested that with appropriate controls the presentation layer could be
deployed in a public cloud but the middleware and database layers cannot.
What would be the best approach to enabling service elasticity in this scenario?

A start-up cloud provider is evaluating potential resource allocation models to use for reserving
client resources. Their service offering targets software development and testing.
Which model would be most suitable?

The line of business (LOB) Services Product Manager has asked you to implement a solution that
monitors the actual resource utilization of your company’s private cloud infrastructure.
This solution should gather actual statistics of utilization and relate them back to the actual
infrastructure costs to show the realized cost to run the vApp within the company’s private cloud.
Which software solution would best fit the requirements of the LOB Services Product Manager?

You are a Cloud Architect working with a large financial services company. They currently have a
large, hybrid cloud that includes multiple CSPs. The company recently suffered a breach on some
of their web servers hosted at one of the CSPs and were not alerted to it.
Why might you recommend RSA NetWitness Panorama as a solution for the company?

A public cloud service provider wants to improve their IT capabilities in the following areas:
1 – Storage performance trending
2 – More comprehensive element management
3 – Holistic visibility across their storage services
4 – Security and Audit Log Management
5 – Reduce troubleshooting time
Which three areas is ProSphere best suited to address?

A health care provider is determining the best chargeback model for their organization. Their
requirements are:
Simple to measure
Operational costs should be amortized over a specific time period
Charges should be divided among the lines of business
Which chargeback model satisfies these requirements?