Question 56

Unlike SOC Type 1 reports, which are based on a specific point in time, SOC Type 2 reports are done over a period of time. What is the minimum span of time for a SOC Type 2 report?
  • Question 57

    Database activity monitoring (DAM) can be:
  • Question 58

    What strategy involves replacing sensitive data with opaque values, usually with a means of mapping it back to the original value?
  • Question 59

    With an API, various features and optimizations are highly desirable to scalability, reliability, and security.
    What does the REST API support that the SOAP API does NOT support?
  • Question 60

    The Cloud Security Alliance (CSA) Security, Trust, and Assurance Registry (STAR) program has __________ tiers.
    Response: