The PRIMARY objective of an audit initiation meeting with a cloud audit client is to:
Answer(s): C
Policies and procedures shall be established, and supporting business processes and technical measures implemented, for maintenance of several items ensuring continuity and availability of operations and support personnel. Which of the following controls BEST matches this control description?
Answer(s): A
https://www.sapidata.sm/img/cms/CAIQ_v3-1_2020-01-13.pdf (2)
An auditor identifies that a CSP received multiple customer inquiries and RFPs during the last month. Which of the following should be the BEST recommendation to reduce the CSP burden?
Answer(s): D
https://cloudsecurityalliance.org/star/registry/
Which of the following approaches encompasses social engineering of staff, bypassing of physical access controls and penetration testing?
Answer(s): B
https://www.isaca.org/resources/isaca-journal/issues/2016/volume-5/planning-for-informationsecurity-testinga-practical-approach
When applying the Top Threats Analysis methodology following an incident, what is the scope of the technical impact identification step?
Share your comments for ISACA CCAK exam with other users:
new to this site but i feel it is good
the correct answer to q8 is b. explanation since the mule app has a dependency, it is necessary to include project modules and dependencies to make sure the app will run successfully on the runtime on any other machine. source code of the component that the mule app is dependent of does not need to be included in the exported jar file, because the source code is not being used while executing an app. compiled code is being used instead.
good questions
Delayed the exam until December 29th.
A and D are True
good one with explanation
This is one of the most useful study guides I have ever used.