Isaca CCAK Practice Test - Questions Answers, Page 9

The rapid and dynamic rate of changes found in a cloud environment affects the organization's:

Which of the following parties should have accountability for cloud compliance requirements?

A cloud customer configured and developed a solution on top of the certified cloud services. Building on top of a compliant CSP:

An independent contractor is assessing security maturity of a SaaS company against industry standards. The SaaS company has developed and hosted all their products using the cloud services provided by a third-party cloud service provider (CSP). What is the optimal and most efficient mechanism to assess the controls

CSP is responsible for?

One of the Cloud Control Matrix's (CCM's) control specifications states that "Independent reviews and assessments shall be performed at least annually to ensure that the organization addresses nonconformities of established policies, standards, procedures, and compliance obligations." Which of the following controls under the Audit Assurance and Compliance domain does this match to?

What data center and physical security measures should a cloud customer consider when assessing a cloud service provider?

To assist an organization with planning a cloud migration strategy to execution, an auditor should recommend the use of:

An auditor identifies that a CSP received multiple customer inquiries and RFPs during the last month. Which of the following should be the BEST recommendation to reduce the CSP burden?

How should controls be designed by an organization?