ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CCAK All Questions

View all questions & answers for the CCAK exam
Go to Exam

Exam CCAK topic 1 question 187 discussion

Actual exam question from Isaca's CCAK
Question #: 187
Topic #: 1
[All CCAK Questions]

Who is responsible for identifying and assessing the risk associated with using cloud services?

  • A. The external auditor
  • B. The client organization
  • C. The cloud service provider
  • D. The cloud service provider’s suppliers
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Auditor2020 at March 26, 2025, 3:23 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Auditor2020
1 month, 2 weeks ago
Selected Answer: B
B. The client organization The client organization is responsible for identifying and assessing the risks associated with using cloud services. While cloud service providers manage the infrastructure and offer various services, it is up to the client organization to evaluate how these services align with their specific business needs, compliance requirements, and risk tolerance. This involves conducting due diligence on the cloud service provider's security controls, understanding shared responsibility models, and assessing how cloud services integrate into their overall risk management strategy.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago