B. cloud auditor.
The final decision to include a material finding in a cloud audit report should be made by the cloud auditor. The auditor is responsible for assessing the evidence and determining the significance of findings based on the audit criteria and objectives. While the CISO, senior management, and CEO can provide input and context, the auditor must maintain independence and objectivity in reporting findings to ensure the accuracy and integrity of the audit report. The auditor's professional judgment is critical in deciding which findings are material and should be included in the report to provide a true and fair view of the audit results.
decision to include a finding in audit report is done by auditor with high integrity, honest and truthful. P# 256. Decision to act on the finding is done by auditee’s senior management
The auditee’s senior management should make the final decision to include a material finding in a cloud audit report. The auditee’s senior management is responsible for ensuring that the organization complies with its security and compliance obligations.
While the organization’s chief information security officer (CISO), cloud auditor, and organization’s chief executive officer (CEO) may be involved in the audit process, they are not responsible for making the final decision to include a material finding in a cloud audit report.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.CCAK Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Auditor2020
1 month, 2 weeks agof17907f
6 months, 2 weeks agosai_murthy
9 months agoats20
10 months, 3 weeks ago