Free Access ISACA.CCAK.v2022-07-25.q75 Practice Test (Page 10)

Question 41

Which of the following controls framework should the cloud customer use to assess the overall security risk of a cloud provider?

A.SOC3 - Type2

B.SOC1 - Type1

C.Cloud Control Matrix (CCM)

D.SOC2 - Type1

Question 42

An auditor identifies that a CSP received multiple customer inquiries and RFPs during the last month. Which of the following should be the BEST recommendation to reduce the CSP burden?

A.CSP can schedule a call with each customer.

B.CSP can share all security reports with customers to streamline the process.

C.CSP can answer each customer individually.

D.CSP can direct all customers' inquiries to the information in the CSA STAR registry.

Question 43

To identify key actors and requirements, which of the following MUST be considered when designing a cloud compliance program?

A.Key stakeholders, enterprise risk management, and Internal audit perspectives

B.Enterprise risk management, data protection, privacy and legal perspectives

C.Business/organizational, governance, cloud and risk perspectives

D.Cloud service provider, internal and external audit perspectives

Question 44

Which of the following would be the GREATEST governance challenge to an organization where production is hosted in a public cloud and backups are held on the premises?

A.Aligning the cloud service delivery with the organization's objective

B.Aligning the cloud provider's SLA with the organization's policy

C.Aligning shared responsibilities between provider and customer

D.Aligning the organization's activity with the cloud provider's policy

Question 45

In volume storage, what method is often used to support resiliency and security?

A.hypervisor agents

B.data dispersion

C.data rights management

D.random placement

E.proxy encryption

Other Version: 408ISACA.CCAK.v2025-05-13.q213; 795ISACA.CCAK.v2023-04-28.q71; 887ISACA.CCAK.v2022-12-30.q72; 1595ISACA.CCAK.v2022-02-11.q57; 70ISACA.Passtestking.CCAK.v2021-10-20.by.jerry.27q.pdf

Latest Upload: 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 162TheSecOpsGroup.CNSP.v2025-09-08.q20; 221CFAInstitute.ESG-Investing.v2025-09-08.q173; 155PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 145Salesforce.Data-Architect.v2025-09-05.q216; 139Adobe.AD0-E605.v2025-09-05.q50; 184Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 41

Question 42

Question 43

Question 44

Question 45

Download PDF File