ExamGecko
Login
Home / Isaca / CCAK / List of questions
Ask Question

Isaca CCAK Practice Test - Questions Answers, Page 14

Add to Whishlist

List of questions

Question 131

Report Export Collapse

In cloud computing, which KEY subject area relies on measurement results and metrics?

Become a Premium Member for full access
  Unlock Premium Member

Question 132

Report Export Collapse

A certification target helps in the formation of a continuous certification framework by incorporating:

Become a Premium Member for full access
  Unlock Premium Member

Question 133

Report Export Collapse

Why should the results of third-party audits and certification be relied on when analyzing and assessing the cybersecurity risks in the cloud?

Become a Premium Member for full access
  Unlock Premium Member

Question 134

Report Export Collapse

If a customer management interface is compromised over the public Internet, it can lead to:

Become a Premium Member for full access
  Unlock Premium Member

Question 135

Report Export Collapse

Which of the following is a detective control that may be identified in a Software as a Service (SaaS) service provider?

Become a Premium Member for full access
  Unlock Premium Member

Question 136

Report Export Collapse

Which of the following is an example of a corrective control?

Become a Premium Member for full access
  Unlock Premium Member

Question 137

Report Export Collapse

When mapping controls to architectural implementations, requirements define:

Become a Premium Member for full access
  Unlock Premium Member

Question 138

Report Export Collapse

During the cloud service provider evaluation process, which of the following BEST helps identify baseline configuration requirements?

Become a Premium Member for full access
  Unlock Premium Member

Question 139

Report Export Collapse

What is the MOST effective way to ensure a vendor is compliant with the agreed-upon cloud service?

Become a Premium Member for full access
  Unlock Premium Member

Question 140

Report Export Collapse

Which of the following is MOST useful for an auditor to review when seeking visibility into the cloud supply chain for a newly acquired Software as a Service (SaaS) solution?

Become a Premium Member for full access
  Unlock Premium Member
Total 195 questions
Go to page: of 20
Open VPLUS File
Convert VPLUS to PDF

Related questions

Policies and procedures shall be established, and supporting business processes and technical measures implemented, for maintenance of several items ensuring continuity and availability of operations and support personnel. Which of the following controls BEST matches this control description?
An organization deploying the Cloud Control Matrix (CCM) to perform a compliance assessment will encompass the use of the "Corporate Governance Relevance" feature to filter out those controls:
With regard to the Cloud Control Matrix (CCM), the 'Architectural Relevance' is a feature that enables the filtering of security controls by:
A certification target helps in the formation of a continuous certification framework by incorporating:
What is below the waterline in the context of cloud operationalization?
To ensure that cloud audit resources deliver the best value to the organization, the PRIMARY step would be to:
Which statement about compliance responsibilities and ownership of accountability is correct?
A Dot Release of Cloud Control Matrix (CCM) indicates what?
When establishing cloud governance, an organization should FIRST test by migrating:
Which of the following would be a logical starting point for an auditor who has been engaged to assess the security of an organization's DevOps pipeline?