C. SOC 2
SOC 2 (System and Organization Controls 2) is most relevant for assurance over trust principles applicable to cloud security auditing. SOC 2 reports are specifically designed to address a service organization's controls relevant to security, availability, processing integrity, confidentiality, and privacy. These trust service criteria are particularly applicable to cloud environments, where assurance regarding these principles is often necessary for users of the service.
While ISO 27001 and ISO 27002 are important standards for information security management systems, they are not specifically focused on providing assurance over the trust principles in the context of cloud security auditing. SOC 1, on the other hand, is focused on controls over financial reporting, making it less relevant for cloud security audits.
This section is not available anymore. Please use the main Exam Page.CCAK Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Auditor2020
1 month, 2 weeks ago4f2a581
9 months, 3 weeks ago4f2a581
9 months, 3 weeks ago4f2a581
9 months, 3 weeks ago