Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu
sale

Want to Unlock All Questions for this Exam?

Full Exam Access, Discussions, No Robots Checks

27
Students signed up in the last 24H

Isaca CCAK Exam Actual Questions

The questions for CCAK were last updated on April 15, 2024.
  • Viewing page 1 out of 46 pages.
  • Viewing questions 1-5 out of 233 questions
 

Topic 1 - Exam A

Question #1 Topic 1

Changes to which of the following will MOST likely influence the expansion or reduction of controls required to remediate the risk arising from changes to an organization’s SaaS vendor?

  • A. Risk exceptions policy
  • B. Contractual requirements
  • C. Risk appetite
  • D. Board oversight
Reveal Solution Hide Solution   Discussion   2

Correct Answer: C 🗳️

Question #2 Topic 1

A CSP contracts for a penetration test to be conducted on its infrastructures. The auditor engages the target with no prior knowledge of its defenses, assets, or channels. The CSP’s security operation center is not notified in advance of the scope of the audit and the test vectors. Which mode is selected by the CSP?

  • A. Double gray box
  • B. Tandem
  • C. Reversal
  • D. Double blind
Reveal Solution Hide Solution   Discussion  

Correct Answer: D 🗳️

Question #3 Topic 1

Due to cloud audit team resource constraints, an audit plan as initially approved cannot be completed. Assuming that the situation is communicated in the cloud audit report, which course of action is MOST relevant?

  • A. Focusing on auditing high-risk areas
  • B. Testing the adequacy of cloud controls design
  • C. Relying on management testing of cloud controls
  • D. Testing the operational effectiveness of cloud controls
Reveal Solution Hide Solution   Discussion  

Correct Answer: A 🗳️

Question #4 Topic 1

In an organization, how are policy violations MOST likely to occur?

  • A. By accident
  • B. Deliberately by the ISP
  • C. Deliberately
  • D. Deliberately by the cloud provider
Reveal Solution Hide Solution   Discussion  

Correct Answer: A 🗳️

Question #5 Topic 1

Which of the following is the BEST tool to perform cloud security control audits?

  • A. General Data Protection Regulation (GDPR)
  • B. ISO 27001
  • C. Federal Information Processing Standard (FIPS) 140-2
  • D. CSA Cloud Control Matrix (CCM)
Reveal Solution Hide Solution   Discussion  

Correct Answer: D 🗳️

Next Questions

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel